diff options
author | dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> | 2024-06-18 13:07:11 +0200 |
---|---|---|
committer | GitHub <noreply@github.com> | 2024-06-18 13:07:11 +0200 |
commit | adc74b3a82f8429259218b6a47443bb6b81456cd (patch) | |
tree | bc6ed565f1e922693d215e95758e0f97e053f3e0 | |
parent | fd171b1ba04e29f53c16069e6b96b6b53f09c964 (diff) | |
download | pyca-cryptography-adc74b3a82f8429259218b6a47443bb6b81456cd.zip pyca-cryptography-adc74b3a82f8429259218b6a47443bb6b81456cd.tar.gz pyca-cryptography-adc74b3a82f8429259218b6a47443bb6b81456cd.tar.bz2 |
Bump actions/attest-build-provenance from 1.3.1 to 1.3.2 (#11115)
Bumps [actions/attest-build-provenance](https://github.com/actions/attest-build-provenance) from 1.3.1 to 1.3.2.
- [Release notes](https://github.com/actions/attest-build-provenance/releases)
- [Changelog](https://github.com/actions/attest-build-provenance/blob/main/RELEASE.md)
- [Commits](https://github.com/actions/attest-build-provenance/compare/534b352d658f90498fd148d231fdbf88f3886a3a...bdd51370e0416ac948727f861e03c2f05d32d78e)
---
updated-dependencies:
- dependency-name: actions/attest-build-provenance
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
-rw-r--r-- | .github/workflows/pypi-publish.yml | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/.github/workflows/pypi-publish.yml b/.github/workflows/pypi-publish.yml index 4a51a1e..1a6fec6 100644 --- a/.github/workflows/pypi-publish.yml +++ b/.github/workflows/pypi-publish.yml @@ -93,7 +93,7 @@ jobs: # Do not perform attestation for things for TestPyPI. This is because # there's nothing that would prevent a malicious PyPI from serving a # signed TestPyPI asset in place of a release intended for PyPI. - - uses: actions/attest-build-provenance@534b352d658f90498fd148d231fdbf88f3886a3a # v1.3.1 + - uses: actions/attest-build-provenance@bdd51370e0416ac948727f861e03c2f05d32d78e # v1.3.2 with: subject-path: 'dist/**/cryptography*' if: env.TWINE_REPOSITORY == 'pypi' |