. #52

Workflow file for this run

	name: Test Witness Action Wrapper

	on:
	push:
	branches: [ main ]
	pull_request:
	branches: [ main ]

	permissions:
	id-token: write # This is required for requesting the JWT
	contents: read # This is required for actions/checkout

	jobs:
	test-sigstore-archivista:
	runs-on: ubuntu-latest
	steps:
	- name: Checkout repository
	uses: actions/checkout@v3

	- name: Setup Node.js
	uses: actions/setup-node@v3
	with:
	node-version: '16'

	- name: Install dependencies
	run: npm ci

	- name: Test with Sigstore and Archivista
	id: sigstore-attestation
	uses: ./
	with:
	# Action to run
	action-ref: "actions/hello-world-javascript-action@main"
	input-who-to-greet: "Sigstore"
	who-to-greet: "SigstoreNoPrefix"

	# Witness configuration
	step: test-sigstore
	attestations: "environment github slsa"
	attestor-slsa-export: "true"
	enable-sigstore: "true"
	enable-archivista: "true"
	outfile: "./sigstore-attestation.json"

	- name: Check GitOID output
	run: \|
	if [[ -n "${{ steps.sigstore-attestation.outputs.git_oid }}" ]]; then
	echo "GitOID: ${{ steps.sigstore-attestation.outputs.git_oid }}"
	echo "Attestation succeeded with Sigstore and Archivista"
	else
	echo "No GitOID returned - this might be expected in PR builds without proper credentials"
	fi

	- name: Check attestation file
	run: \|
	if [[ -f "./sigstore-attestation.json" ]]; then
	echo "Sigstore attestation created successfully"
	jq . "./sigstore-attestation.json" \| head -n 20
	else
	echo "Sigstore attestation file not found!"
	exit 1
	fi

	- name: Upload sigstore attestation as artifact
	uses: actions/upload-artifact@v4
	with:
	name: sigstore-attestation
	path: ./sigstore-attestation.json

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

. #52

Workflow file

. #52

Jobs

Run details

Workflow file for this run