From ae3616e98ea815df7d365ec468c2cd5107c91faa Mon Sep 17 00:00:00 2001
From: Raphanus Lo <yunchang.lo@suse.com>
Date: Mon, 13 Jan 2025 16:42:14 +0800
Subject: [PATCH] feat(ci): add provenance for SLSA3

Signed-off-by: Raphanus Lo <yunchang.lo@suse.com>
---
 .github/workflows/build.yml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
index 9c8741ea4..f506dcfd9 100644
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -102,6 +102,7 @@ jobs:
         tags: longhornio/longhorn-instance-manager:${{ env.branch }}-head-amd64
         file: package/Dockerfile
         sbom: true
+        provenance: mode=max
         build-args: |
           ARCH=amd64
     - name: docker-publish-longhorn-instance-manager-with-tag
@@ -114,6 +115,7 @@ jobs:
         tags: longhornio/longhorn-instance-manager:${{ github.ref_name }}-amd64
         file: package/Dockerfile
         sbom: true
+        provenance: mode=max
         build-args: |
           ARCH=amd64
 
@@ -165,6 +167,7 @@ jobs:
         tags: longhornio/longhorn-instance-manager:${{ env.branch }}-head-arm64
         file: package/Dockerfile
         sbom: true
+        provenance: mode=max
         build-args: |
           ARCH=arm64
     - name: docker-publish-longhorn-instance-manager-with-tag
@@ -177,6 +180,7 @@ jobs:
         tags: longhornio/longhorn-instance-manager:${{ github.ref_name }}-arm64
         file: package/Dockerfile
         sbom: true
+        provenance: mode=max
         build-args: |
           ARCH=arm64