From af31061992791b8adea439fe2106b15802c78839 Mon Sep 17 00:00:00 2001 From: tooomm Date: Sat, 21 Feb 2026 13:53:31 +0100 Subject: [PATCH] Fix artifact digest sha for attestation --- .github/workflows/desktop-build.yml | 7 ++++--- 1 file changed, 4 insertions(+), 3 deletions(-) diff --git a/.github/workflows/desktop-build.yml b/.github/workflows/desktop-build.yml index 684b375cc..8f7d2e2b3 100644 --- a/.github/workflows/desktop-build.yml +++ b/.github/workflows/desktop-build.yml @@ -528,8 +528,8 @@ jobs: env: GH_TOKEN: ${{github.token}} tag_name: ${{needs.configure.outputs.tag}} - asset_path: ${{steps.build.outputs.path}} asset_name: ${{steps.build.outputs.name}} + asset_path: ${{steps.build.outputs.path}} run: gh release upload "$tag_name" "$asset_path#$asset_name" - name: Attest binary provenance @@ -538,11 +538,12 @@ jobs: uses: actions/attest-build-provenance@v3 with: subject-name: ${{steps.build.outputs.name}} - subject-digest: sha256:${{ steps.upload_artifact.outputs.artifact-digest }} + subject-path: ${{steps.build.outputs.path}} + show-summary: false - name: Verify binary attestation if: steps.attestation.outcome == 'success' shell: bash env: GH_TOKEN: ${{github.token}} - run: gh attestation verify ${{steps.build.outputs.path}} -R Cockatrice/Cockatrice + run: gh attestation verify ${{steps.build.outputs.path}} --repo Cockatrice/Cockatrice