From 459b2d6cf45fa63deb230fc8d1f43f4fca75abc1 Mon Sep 17 00:00:00 2001
From: "Justin (shocknet)" <capitalist_dog@tuta.io>
Date: Mon, 20 May 2024 10:14:41 -0400
Subject: [PATCH] attest

---
 .github/workflows/push.yml | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/.github/workflows/push.yml b/.github/workflows/push.yml
index b7e0ed41..e6535882 100644
--- a/.github/workflows/push.yml
+++ b/.github/workflows/push.yml
@@ -44,3 +44,11 @@ jobs:
           tags: ${{ steps.meta.outputs.tags }}
           labels: ${{ steps.meta.outputs.labels }}
 
+      - name: Attest build provenance
+        uses: actions/attest-build-provenance@v1
+        with:
+          subject-path: ${{ github.workspace }}/Dockerfile  # Adjusted to point directly to Dockerfile
+          subject-name: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
+          push-to-registry: true
+          github-token: ${{ secrets.GITHUB_TOKEN }}
+