Use new slsa-github-generator

sethmlarson · sethmlarson · commit 2f36e84a0117 · 2022-12-10T13:40:06.000-06:00
diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml
@@ -26,7 +26,7 @@ jobs:
 
     - name: "Require signed git tag"
       run: |
-        git verify-tag ${GITHUB_REF}
+        git verify-tag ${GITHUB_REF#refs/*/}
 
     - name: "Setup Python"
       uses: "actions/setup-python@13ae5bb136fac2878aff31522b9efb785519f984"
@@ -60,7 +60,7 @@ jobs:
 
   Provenance:
     needs: ["Build"]
-    uses: "slsa-framework/slsa-github-generator/.github/workflows/generator_generic_slsa3.yml@v1.2.1"
+    uses: "slsa-framework/slsa-github-generator/.github/workflows/generator_generic_slsa3.yml@v1.4.0"
     permissions:
       actions: read
       id-token: write
@@ -70,8 +70,6 @@ jobs:
     with:
       base64-subjects: "${{ needs.build.outputs.hashes }}"
       upload-assets: true
-      # Workaround for slsa-framework/slsa-github-generator#1163
-      compile-generator: true
 
   Publish:
     name: "Publish"
