diff --git a/.github/workflows/release-sign.yml b/.github/workflows/release-sign.yml index d86fe99d..aef9e4fa 100644 --- a/.github/workflows/release-sign.yml +++ b/.github/workflows/release-sign.yml @@ -54,7 +54,7 @@ jobs: run: git archive --format=tar.gz -o ${IMATH_TARBALL} --prefix ${IMATH_PREFIX} ${TAG} - name: Sign archive with Sigstore - uses: sigstore/gh-action-sigstore-python@04cffa1d795717b140764e8b640de88853c92acc # v3.3.0 + uses: sigstore/gh-action-sigstore-python@5b79a39c381910c090341a2c9b0bf022c8b387e1 # v3.4.0 with: inputs: ${{ env.IMATH_TARBALL }} upload-signing-artifacts: false