-
Notifications
You must be signed in to change notification settings - Fork 2
50 lines (46 loc) · 1.41 KB
/
provenance.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
name: provenance
on:
push:
tags:
- '*'
jobs:
build:
runs-on: ubuntu-latest
permissions:
id-token: write
contents: read
attestations: write
strategy:
matrix:
rust:
- 1.72
target:
- thumbv7em-none-eabi
- x86_64-pc-windows-gnu
steps:
- uses: actions/checkout@v4
- uses: dtolnay/rust-toolchain@master
with:
toolchain: ${{ matrix.rust }}
targets: ${{ matrix.target }}
- run: cargo build --target ${{ matrix.target }} --release --no-default-features --features "ml-dsa-44 ml-dsa-65 ml-dsa-87"
- name: Attest
uses: actions/attest-build-provenance@v1
with:
subject-path: '${{ github.workspace }}/target/*/release/libfips204.rlib'
- name: 'Upload Artifact'
uses: actions/upload-artifact@v4
with:
name: ${{ matrix.target }}--libfips204.rlib
path: '${{ github.workspace }}/target/*/release/libfips204.rlib'
retention-days: 60
- name: Checkout actions-oidc-debugger
uses: actions/checkout@v4
with:
repository: github/actions-oidc-debugger
ref: main
path: ./.github/actions/actions-oidc-debugger
- name: Debug OIDC Claims
uses: ./.github/actions/actions-oidc-debugger
with:
audience: '${{ github.server_url }}/${{ github.repository_owner }}'