Add attestation

JarLob · JarLob · commit 33b1d9f13596 · 2025-10-14T14:57:00.000Z
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -9,8 +9,15 @@ on:
         default: 'latest'
 
 permissions:
-    contents: read
-    packages: write
+  id-token: write
+  contents: read
+  attestations: write
+  packages: write
+
+env:
+  REGISTRY: ghcr.io
+  USER: githubsecuritylab
+  IMAGE_NAME: seclab-taskflow-agent3
 
 jobs:
   release:
@@ -25,6 +32,15 @@ jobs:
           python-version: '3.11'
 
       - name: Create release
+        id: docker_build
         run: |
-          echo ${{ secrets.GITHUB_TOKEN }} | docker login ghcr.io -u GitHubSecurityLab --password-stdin
-          python release_tools/publish_docker.py release.txt main.py ghcr.io/githubsecuritylab/seclab-taskflow-agent ${{ github.event.inputs.release_tag }}
+          echo ${{ secrets.GITHUB_TOKEN }} | docker login ghcr.io -u ${{ github.actor }} --password-stdin
+          DIGEST=$(python release_tools/publish_docker.py release.txt main.py ${{ env.REGISTRY }}/${{ env.USER }}/${{ env.IMAGE_NAME }} ${{ github.event.inputs.release_tag }} | grep '^Image digest: ' | cut -d':' -f2 | xargs)
+          echo "digest=$DIGEST" >> $GITHUB_OUTPUT
+
+      - name: Generate artifact attestation
+        uses: actions/attest-build-provenance@v3
+        with:
+          subject-name: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
+          subject-digest: '${{ steps.docker_build.outputs.digest }}'
+          push-to-registry: true
diff --git a/release_tools/publish_docker.py b/release_tools/publish_docker.py
@@ -82,6 +82,16 @@ def write_dockerfile(dest_dir, entrypoint):
     with open(os.path.join(dest_dir, "Dockerfile"), "w") as f:
         f.write(dockerfile)
 
+def get_image_digest(image_name, tag):
+    result = subprocess.run(
+        ["docker", "buildx", "imagetools", "inspect", f"{image_name}:{tag}"],
+        stdout=subprocess.PIPE, check=True, text=True
+    )
+    for line in result.stdout.splitlines():
+        if line.strip().startswith("Digest:"):
+            return line.strip().split(":", 1)[1].strip()
+    return None
+
 def build_and_push_image(dest_dir, image_name, tag):
     # Build
     subprocess.run([
@@ -92,6 +102,8 @@ def build_and_push_image(dest_dir, image_name, tag):
         "docker", "push", f"{image_name}:{tag}"
     ], check=True)
     print(f"Pushed {image_name}:{tag}")
+    digest = get_image_digest(image_name, tag)
+    print(f"Image digest: {digest}") # The prefix "Image digest: " is used for grepping in the release workflow
 
 if __name__ == "__main__":
     if len(sys.argv) != 5:
