search

slsa-framework / slsa-github-generator

Language-agnostic SLSA provenance generation for Github Actions
Apache License 2.0
417 stars 128 forks source link

[feature] Upload build artifacts to a permanent storage #1867

Open rbehjati opened 1 year ago

rbehjati commented 1 year ago

Is your feature request related to a problem? Please describe.

The Docker-based builder currently builds the artifacts and uploads them as artifacts on GitHub. It would be nice to provide a workflow option and functionality for uploading the artifacts in a permanent storage, such as Ent.

Describe the solution you'd like In Oak we currently do this as part of an internal workflow, but it might be interesting for other projects too. This is done in our internal reusable workflow in .github/workflows/reusable_provenance.yaml, in this PR.

Describe alternatives you've considered User projects could set it up, but if it is a common use case, having this as part of the docker-based builder workflow is more convenient.

cc @asraa @tiziano88

tiziano88 commented 1 year ago

+1 this would be a useful addition to the workflow (its usage would be optional and opt-in of course)