From 19715235d508171e68ad401da50843d8f352c649 Mon Sep 17 00:00:00 2001 From: Angel Antonio Avalos Cisneros Date: Mon, 19 Aug 2024 10:13:32 -0700 Subject: [PATCH] SNOW-1632086: update gh action name to verify signature (#2121) --- .github/workflows/python-publish.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/python-publish.yml b/.github/workflows/python-publish.yml index fd51d116c26..ec4ed822f8f 100644 --- a/.github/workflows/python-publish.yml +++ b/.github/workflows/python-publish.yml @@ -55,14 +55,14 @@ jobs: --signature "${dist_base}.sig" \ --cert "${dist_base}.crt" \ --cert-oidc-issuer https://token.actions.githubusercontent.com \ - --cert-identity ${GITHUB_SERVER_URL}/${GITHUB_REPOSITORY}/.github/workflows/build_and_sign_demand.yml@${GITHUB_REF} + --cert-identity ${GITHUB_SERVER_URL}/${GITHUB_REPOSITORY}/.github/workflows/python-publish.yml@${GITHUB_REF} # Verify using `.sigstore` bundle; python -m \ sigstore verify identity "${dist}" \ --bundle "${dist_base}.sigstore" \ --cert-oidc-issuer https://token.actions.githubusercontent.com \ - --cert-identity ${GITHUB_SERVER_URL}/${GITHUB_REPOSITORY}/.github/workflows/build_and_sign_demand.yml@${GITHUB_REF} + --cert-identity ${GITHUB_SERVER_URL}/${GITHUB_REPOSITORY}/.github/workflows/python-publish.yml@${GITHUB_REF} done - name: List artifacts after sign run: ls ./dist