Create an attestation · GitHub v3 REST API

provider repos POST /repos/{owner}/{repo}/attestations

@utdk/github /repos/{owner}/{repo}/attestations

Create an attestation

Store an artifact attestation and associate it with a repository. The authenticated user must have write permission to the repository and, if using a fine-grained access token, the `attestations:write` permission is required. Artifact attestations are meant to be created using the [attest action](https://github.com/actions/attest). For more information, see our guide on [using artifact attestations to establish a build's provenance](https://docs.github.com/actions/security-guides/using-artifact-attestations-to-establish-provenance-for-builds).

owner path required: The account owner of the repository. The name is not case sensitive.; string
repo path required: The name of the repository without the `.git` extension. The name is not case sensitive.; string

Try it

Authentication

Configure credentials for GitHub v3 REST API

Gateway

The gateway proxies requests and injects credentials server-side. Configure credentials above, then enter your gateway URL.

Execution Mode

Gateway URL

Saved automatically to browser storage.

repos.createAttestation

POST/repos/{owner}/{repo}/attestations

Parameters

ownerrequired

The account owner of the repository. The name is not case sensitive.

reporequired

The name of the repository without the `.git` extension. The name is not case sensitive.

Input

bundlerequired

The attestation's Sigstore Bundle. Refer to the [Sigstore Bundle Specification](https://github.com/sigstore/protobuf-specs/blob/main/protos/sigstore_bundle.proto) for more information.

Enter a gateway URL above to enable sending.

Code snippet

Updates live as you fill in the form above.

TypeScript

import github from '@utdk/github';

await github.repos.createAttestation()