github.com/drellem2/pogo@v0.0.0-20240503070746-2c2b76da329a/.github/workflows/go-ossf-slsa3-publish.yml

github.com/drellem2/pogo@v0.0.0-20240503070746-2c2b76da329a/.github/workflows/go-ossf-slsa3-publish.yml (about)

     1  # This workflow uses actions that are not certified by GitHub.
     2  # They are provided by a third-party and are governed by
     3  # separate terms of service, privacy policy, and support
     4  # documentation.
     5  
     6  # This workflow lets you compile your Go project using a SLSA3 compliant builder.
     7  # This workflow will generate a so-called "provenance" file describing the steps
     8  # that were performed to generate the final binary.
     9  # The project is an initiative of the OpenSSF (openssf.org) and is developed at
    10  # https://github.com/slsa-framework/slsa-github-generator.
    11  # The provenance file can be verified using https://github.com/slsa-framework/slsa-verifier.
    12  # For more information about SLSA and how it improves the supply-chain, visit slsa.dev.
    13  
    14  name: SLSA Go releaser
    15  on:
    16    workflow_dispatch:
    17    release:
    18      types: [created]
    19  
    20  permissions: read-all
    21  
    22  jobs:
    23    # ========================================================================================================================================
    24    #     Prerequesite: Create a .slsa-goreleaser.yml in the root directory of your project.
    25    #       See format in https://github.com/slsa-framework/slsa-github-generator/blob/main/internal/builders/go/README.md#configuration-file
    26    #=========================================================================================================================================
    27    build:
    28      permissions:
    29        id-token: write # To sign.
    30        contents: write # To upload release assets.
    31        actions: read   # To read workflow path.
    32      uses: slsa-framework/slsa-github-generator/.github/workflows/builder_go_slsa3.yml@v1.4.0
    33      with:
    34        go-version: 1.17
    35        # =============================================================================================================
    36        #     Optional: For more options, see https://github.com/slsa-framework/slsa-github-generator#golang-projects
    37        # =============================================================================================================
    38