TheArchive/restic
1
0
Fork 0
mirror of https://github.com/restic/restic.git synced 2025-12-02 12:22:02 +00:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #4999 from konidev20/fix-gh-4983-slsa-provenance-for-ghcr-container-images

Browse Source 
docker: sign container images pushed to GHCR with GitHub OIDC tokens
This commit is contained in:
Michael Eischer
2025-01-12 22:38:33 +01:00
committed by GitHub
parent 4e1eeeb721 8d45a4b283
commit 27189e03ee
3 changed files with 65 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
changelog/unreleased/issue-4983 Normal file
View File

@@ -0,0 +1,8 @@
Enhancement: add SLSA provenance to the GHCR Container images
Restic's GitHub Container Registry (GHCR) image build workflow now includes
SLSA provenance generation. This enhancement improves the security and
traceability of images built and pushed to GHCR.
https://github.com/restic/restic/issues/4983
https://github.com/restic/restic/pull/4999