From 261f6c29d6a212725b1b649cac374c8ae0b6ca21 Mon Sep 17 00:00:00 2001
From: Hynek Schlawack <hs@ox.cx>
Date: Mon, 13 May 2024 17:48:50 +0200
Subject: [PATCH] Attest provenance

---
 .github/workflows/pypi-package.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/pypi-package.yml b/.github/workflows/pypi-package.yml
index f557727f..3145bf1c 100644
--- a/.github/workflows/pypi-package.yml
+++ b/.github/workflows/pypi-package.yml
@@ -25,6 +25,8 @@ jobs:
           fetch-depth: 0
 
       - uses: hynek/build-and-inspect-python-package@v2
+        with:
+          attest-build-provenance-github: 'true'
 
   # Upload to Test PyPI on every commit on main.
   release-test-pypi: