diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 1ef2853b..550e2a72 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -46,13 +46,15 @@ jobs: uses: docker/build-push-action@2cdde995de11925a030ce8070c3d77a52ffcf1c0 # v5.3.0 with: context: . + provenance: mode=max push: true + sbom: true tags: ${{ steps.docker-meta.outputs.tags }} labels: ${{ steps.docker-meta.outputs.labels }} - name: Attest image uses: github-early-access/generate-build-provenance@main with: - subject-name: ${{ env.DOCKER_IMAGE_NAME }} + subject-name: index.docker.io/${{ env.DOCKER_IMAGE_NAME }} subject-digest: ${{ steps.docker-push.outputs.digest }} - push-to-registry: false + push-to-registry: true