Skip to content

Commit 34581d8

Browse files
bdehamerbdehamer
authored
bump actions/attest from 2.0.0 to 2.0.1 (#133)
Signed-off-by: Brian DeHamer <[email protected]>
1 parent 1455967 commit 34581d8

File tree

2 files changed

+9
-8
lines changed

2 files changed

+9
-8
lines changed

README.md

+8-7
Original file line numberDiff line numberDiff line change
@@ -45,7 +45,7 @@ attest:
4545
your SBOM has been generated:
4646

4747
```yaml
48-
- uses: actions/attest-sbom@v1
48+
- uses: actions/attest-sbom@v2
4949
with:
5050
subject-path: '<PATH TO ARTIFACT>'
5151
sbom-path: '<PATH TO SBOM>'
@@ -60,7 +60,7 @@ attest:
6060
See [action.yml](action.yml)
6161

6262
```yaml
63-
- uses: actions/attest-sbom@v1
63+
- uses: actions/attest-sbom@v2
6464
with:
6565
# Path to the artifact serving as the subject of the attestation. Must
6666
# specify exactly one of "subject-path" or "subject-digest". May contain a
@@ -136,6 +136,7 @@ on:
136136
137137
jobs:
138138
build:
139+
runs-on: ubuntu-latest
139140
permissions:
140141
id-token: write
141142
contents: read
@@ -152,7 +153,7 @@ jobs:
152153
format: 'spdx-json'
153154
output-file: 'sbom.spdx.json'
154155
- name: Attest
155-
uses: actions/attest-sbom@v1
156+
uses: actions/attest-sbom@v2
156157
with:
157158
subject-path: '${{ github.workspace }}/my-app'
158159
sbom-path: 'sbom.spdx.json'
@@ -164,7 +165,7 @@ If you are generating multiple artifacts, you can attest all of them at the same
164165
time by using a wildcard in the `subject-path` input.
165166

166167
```yaml
167-
- uses: actions/attest-sbom@v1
168+
- uses: actions/attest-sbom@v2
168169
with:
169170
subject-path: 'dist/**/my-bin-*'
170171
sbom-path: '${{ github.workspace }}/my-bin.sbom.spdx.json'
@@ -177,13 +178,13 @@ Alternatively, you can explicitly list multiple subjects with either a comma or
177178
newline delimited list:
178179

179180
```yaml
180-
- uses: actions/attest-sbom@v1
181+
- uses: actions/attest-sbom@v2
181182
with:
182183
subject-path: 'dist/foo, dist/bar'
183184
```
184185

185186
```yaml
186-
- uses: actions/attest-sbom@v1
187+
- uses: actions/attest-sbom@v2
187188
with:
188189
subject-path: |
189190
dist/foo
@@ -246,7 +247,7 @@ jobs:
246247
format: 'cyclonedx-json'
247248
output-file: 'sbom.cyclonedx.json'
248249
- name: Attest
249-
uses: actions/attest-sbom@v1
250+
uses: actions/attest-sbom@v2
250251
id: attest
251252
with:
252253
subject-name: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}

action.yml

+1-1
Original file line numberDiff line numberDiff line change
@@ -59,7 +59,7 @@ runs:
5959
id: generate-sbom-predicate
6060
with:
6161
sbom-path: ${{ inputs.sbom-path }}
62-
- uses: actions/[email protected].0
62+
- uses: actions/[email protected].1
6363
id: attest
6464
with:
6565
subject-path: ${{ inputs.subject-path }}

0 commit comments

Comments
 (0)