No more attestation

author: Linnea Gräf <nea@nea.moe> 2024-05-26 16:26:24 +0200
committer: Linnea Gräf <nea@nea.moe> 2024-05-26 16:26:24 +0200
commit: a079dcbe7fef2cbd677870964519c8374e5948ab (patch)
tree: 9e0caa5faa28cccf38d9088835d0b9673343bd81 /.github/workflows/docker.yml
parent: 744a930cd26301480524c1242899d4301b11a9fd (diff)
download: mycelium-warning-a079dcbe7fef2cbd677870964519c8374e5948ab.tar.gz
mycelium-warning-a079dcbe7fef2cbd677870964519c8374e5948ab.tar.bz2
mycelium-warning-a079dcbe7fef2cbd677870964519c8374e5948ab.zip
1 files changed, 0 insertions, 7 deletions
diff --git a/.github/workflows/docker.yml b/.github/workflows/docker.yml
index 67e26f8..0b58e73 100644
--- a/.github/workflows/docker.yml
+++ b/.github/workflows/docker.yml
@@ -49,12 +49,5 @@ jobs:
           tags: ${{ steps.meta.outputs.tags }}
           labels: ${{ steps.meta.outputs.labels }}
       
-      # This step generates an artifact attestation for the image, which is an unforgeable statement about where and how it was built. It increases supply chain security for people who consume the image. For more information, see "[AUTOTITLE](/actions/security-guides/using-artifact-attestations-to-establish-provenance-for-builds)." 
-      - name: Generate artifact attestation
-        uses: actions/attest-build-provenance@v1
-        with:
-          subject-name: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME}}
-          subject-digest: ${{ steps.push.outputs.digest }}
-          push-to-registry: true
author	Linnea Gräf <nea@nea.moe>	2024-05-26 16:26:24 +0200
committer	Linnea Gräf <nea@nea.moe>	2024-05-26 16:26:24 +0200
commit	a079dcbe7fef2cbd677870964519c8374e5948ab (patch)
tree	9e0caa5faa28cccf38d9088835d0b9673343bd81 /.github/workflows/docker.yml
parent	744a930cd26301480524c1242899d4301b11a9fd (diff)
download	mycelium-warning-a079dcbe7fef2cbd677870964519c8374e5948ab.tar.gz mycelium-warning-a079dcbe7fef2cbd677870964519c8374e5948ab.tar.bz2 mycelium-warning-a079dcbe7fef2cbd677870964519c8374e5948ab.zip