From 70cea2c3cfcadca0d177112b43ac08db04c76a1b Mon Sep 17 00:00:00 2001
From: Jose Diaz-Gonzalez <email@josediazgonzalez.com>
Date: Thu, 16 May 2024 03:35:57 -0400
Subject: [PATCH] feat: add attestations for all generated binaries

---
 .github/workflows/tagged-release.yml | 25 +++++++++++++++++++++++++
 1 file changed, 25 insertions(+)

diff --git a/.github/workflows/tagged-release.yml b/.github/workflows/tagged-release.yml
index 3538897..dc756ec 100644
--- a/.github/workflows/tagged-release.yml
+++ b/.github/workflows/tagged-release.yml
@@ -41,6 +41,31 @@ jobs:
           buildmode: default
           trimpath: true
 
+      - name: Attest Build Provenance - darwin-amd64
+        uses: actions/attest-build-provenance@v1.1.1
+        with:
+          subject-path: "dist/${{ steps.repo-name.outputs.REPOSITORY_NAME }}-darwin-amd64"
+
+      - name: Attest Build Provenance - darwin-arm64
+        uses: actions/attest-build-provenance@v1.1.1
+        with:
+          subject-path: "dist/${{ steps.repo-name.outputs.REPOSITORY_NAME }}-darwin-arm64"
+
+      - name: Attest Build Provenance - linux-amd64
+        uses: actions/attest-build-provenance@v1.1.1
+        with:
+          subject-path: "dist/${{ steps.repo-name.outputs.REPOSITORY_NAME }}-linux-amd64"
+
+      - name: Attest Build Provenance - linux-arm64
+        uses: actions/attest-build-provenance@v1.1.1
+        with:
+          subject-path: "dist/${{ steps.repo-name.outputs.REPOSITORY_NAME }}-linux-arm64"
+
+      - name: Attest Build Provenance - windows-amd64
+        uses: actions/attest-build-provenance@v1.1.1
+        with:
+          subject-path: "dist/${{ steps.repo-name.outputs.REPOSITORY_NAME }}-windows-amd64.exe"
+
       - name: Set up QEMU
         uses: docker/setup-qemu-action@v3