Andreas/mtg_python_deckbuilder
1
0
Fork 0
mirror of https://github.com/mwisnowski/mtg_python_deckbuilder.git synced 2026-04-05 04:37:16 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
mtg_python_deckbuilder/docs/releases/v4.5.3.md
matt dd996939e6
Some checks failed
CI / build (push) Has been cancelled
Details
chore: prepare release 4.5.3
2026-04-02 10:47:33 -07:00

17 lines
669 B
Markdown
Raw Blame History

# MTG Python Deckbuilder v4.5.3
## Added
- **SBOM & supply chain provenance**: Every tagged release now attaches source SBOMs (SPDX + CycloneDX JSON) for Python dependencies and a CycloneDX container image SBOM to the GitHub Release assets. Build provenance attestations (SLSA-style) are published for the multi-arch Docker image via the GitHub Attestations API. `provenance: mode=max` is enabled on all arch builds.
### Verifying attestations
```bash
gh attestation verify oci://docker.io/mwisnowski/mtg-python-deckbuilder:latest \
--repo mwisnowski/mtg_python_deckbuilder
```
### Inspecting an SBOM
```bash
syft convert sbom-source.cyclonedx.json -o table
```
Reference in a new issue View git blame Copy permalink