actions/toolkit
1
0
Fork 0
mirror of https://git.mirrors.martin98.com/https://github.com/actions/toolkit synced 2026-04-22 01:28:04 +08:00
Code Issues Packages Projects Releases Wiki Activity

set workflow.ref provenance field from ref claim

Browse Source 
Updates the `buildSLSAProvenancePredicate` function to populate the
`workflow.ref` field from the `ref` claim in the OIDC token.

Signed-off-by: Brian DeHamer <bdehamer@github.com>
This commit is contained in:
Brian DeHamer
2025-02-26 08:44:32 -08:00
parent b95b593ca5
commit 0bc338adab
6 changed files with 10 additions and 60 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
packages/attest/__tests__/provenance.test.ts
View File

@@ -75,16 +75,6 @@ describe('provenance functions', () => {
const predicate = await buildSLSAProvenancePredicate()
expect(predicate).toMatchSnapshot()
})
it('handle tags including "@" character', async () => {
nock.cleanAll()
await mockIssuer({
...claims,
workflow_ref: 'owner/repo/.github/workflows/main.yml@foo@1.0.0'
})
const predicate = await buildSLSAProvenancePredicate()
expect(predicate).toMatchSnapshot()
})
})
describe('attestProvenance', () => {