From f714ce6c56b9b61ab7ec4f3f64fe969c3c713343 Mon Sep 17 00:00:00 2001
From: Praveen K B <praveenbhat98@gmail.com>
Date: Mon, 11 Nov 2024 10:52:50 +0530
Subject: [PATCH 1/2] Add build provenance attestation to release workflow

---
 .github/workflows/release.yml | 29 ++++++++++++++++++++++++++++-
 1 file changed, 28 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 651a1f865..5b587f3b9 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -14,6 +14,10 @@ jobs:
   build-linux:
     name: Build for ${{matrix.target}}
     runs-on: ubuntu-latest
+    permissions:
+      id-token: write
+      contents: read
+      attestations: write
     strategy:
       fail-fast: false
       matrix:
@@ -39,6 +43,11 @@ jobs:
         run: |
           mv target/${{ matrix.target }}/release/parseable Parseable_OSS_${{ matrix.target }}
 
+      - name: Generate artifact attestation
+        uses: actions/attest-build-provenance@v1
+        with:
+          subject-path: Parseable_OSS_${{ matrix.target }}
+
       - name: Create Artifact
         uses: actions/upload-artifact@v4
         with:
@@ -56,6 +65,10 @@ jobs:
 
   build-windows:
     runs-on: windows-latest
+    permissions:
+      id-token: write
+      contents: read
+      attestations: write
     steps:
       - name: Checkout
         uses: actions/checkout@v1
@@ -75,6 +88,11 @@ jobs:
         run: |
           mv target/x86_64-pc-windows-msvc/release/PARSEABLE.exe Parseable_OSS_x86_64-pc-windows-msvc.exe
 
+      - name: Generate artifact attestation
+        uses: actions/attest-build-provenance@v1
+        with:
+          subject-path: Parseable_OSS_x86_64-pc-windows-msvc.exe
+
       - name: Create artifact for Windows
         uses: actions/upload-artifact@v4
         with:
@@ -92,6 +110,10 @@ jobs:
 
   build-mac:
     runs-on: macos-latest
+    permissions:
+      id-token: write
+      contents: read
+      attestations: write
     strategy:
       matrix:
         target:
@@ -120,11 +142,16 @@ jobs:
         run: |
           mv target/${{ matrix.target }}/release/Parseable Parseable_OSS_${{ matrix.target }}
 
+      - name: Generate artifact attestation
+        uses: actions/attest-build-provenance@v1
+        with:
+          subject-path: Parseable_OSS_${{ matrix.target }}
+
       - name: Create artifact
         uses: actions/upload-artifact@v4
         with:
           name: Parseable_OSS_${{ matrix.target }}
-          path: Parseable_OSS_${{ matrix.target }}
+          path: Parseable_OSS_${{ matrix.targ`et }}
 
       - name: Publish Archive to Release Page
         uses: softprops/action-gh-release@v0.1.15

From b0599a7149c44c0c38695c9869ff229b5fe58a0b Mon Sep 17 00:00:00 2001
From: Praveen K B <praveenbhat98@gmail.com>
Date: Mon, 11 Nov 2024 10:54:49 +0530
Subject: [PATCH 2/2] Fixed a typo

---
 .github/workflows/release.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 5b587f3b9..783f96b94 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -151,7 +151,7 @@ jobs:
         uses: actions/upload-artifact@v4
         with:
           name: Parseable_OSS_${{ matrix.target }}
-          path: Parseable_OSS_${{ matrix.targ`et }}
+          path: Parseable_OSS_${{ matrix.target }}
 
       - name: Publish Archive to Release Page
         uses: softprops/action-gh-release@v0.1.15