From 43d8169457db16ee77ee5a5bd220b2cecee7b1b0 Mon Sep 17 00:00:00 2001 From: CrazyMax Date: Thu, 15 Dec 2022 14:08:35 +0100 Subject: [PATCH] ci: generate provenance and sbom for bin image Signed-off-by: CrazyMax --- .github/workflows/build.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 358489530070..ad5be716a218 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -163,6 +163,8 @@ jobs: set: | *.cache-from=type=gha,scope=bin-image *.cache-to=type=gha,scope=bin-image,mode=max + *.attest=type=sbom + *.attest=type=provenance,mode=max,builder-id=https://github.com/${{ env.GITHUB_REPOSITORY }}/actions/runs/${{ env.GITHUB_RUN_ID }} release: runs-on: ubuntu-latest