search

sigstore / sigstore-python

A Sigstore client written in Python
https://pypi.org/p/sigstore
Other
233 stars 49 forks source link

Use official GH action to generate build provenances #1219

Closed facutuesca closed 1 week ago

facutuesca commented 1 week ago

Replace slsa-framework/slsa-github-generator with actions/attest-build-provenance.

Tested here: https://github.com/trail-of-forks/sigstore-python/actions/runs/11915239762/job/33205076343

cc @woodruffw

woodruffw commented 1 week ago

/gcbrun

woodruffw commented 1 week ago

LGTM, nice work @facutuesca!