mirror of
https://github.com/dtolnay/install.git
synced 2025-01-31 07:01:20 +01:00
Merge pull request #25 from dtolnay/security
Mention artifact attestation in readme
This commit is contained in:
David Tolnay
GitHub
commit
1ad705d14f
1 changed files with 8 additions and 0 deletions
|
|
@ -29,6 +29,14 @@ jobs:
|
|||
| `crate` | ✓ | Name of crate as published to crates.io |
|
||||
| `bin` | | Name of binary; default = same as crate name |
|
||||
|
||||
## Security
|
||||
|
||||
Binaries are cryptographically signed and verified using [GitHub artifact
|
||||
attestation] to establish the build's provenance, including the specific
|
||||
workflow file and workflow run that produced the artifact.
|
||||
|
||||
[GitHub artifact attestation]: https://docs.github.com/en/actions/security-for-github-actions/using-artifact-attestations/using-artifact-attestations-to-establish-provenance-for-builds
|
||||
|
||||
## License
|
||||
|
||||
The scripts and documentation in this project are released under the [MIT
|
||||
|
|
|
|||
Loading…
Add table
Reference in a new issue