Skip to content

Release v1.0.3

Choose a tag to compare

View all tags
@VarshaRagavendran VarshaRagavendran released this 26 Mar 16:58
· 12 commits to main since this release
v1.0.3
e90ca31

AWS Elastic Beanstalk Deploy Action v1.0.3

This release includes artifact attestations for supply chain security.

Security Features

  • ✅ SLSA Build Provenance attached to key artifacts
  • ✅ Artifact integrity verified with SHA256 checksums
  • ✅ Build environment attestation included

Verification Methods

Using GitHub CLI (Recommended):

gh attestation verify dist/index.js --repo aws-actions/aws-elasticbeanstalk-deploy
gh attestation verify action.yml --repo aws-actions/aws-elasticbeanstalk-deploy

Using SHA256 checksums:

# Download the files and verify against the .sha256 files
sha256sum -c dist/index.js.sha256
sha256sum -c action.yml.sha256

See the CHANGELOG for detailed changes in this release.

What's Changed

  • chore(deps): bump undici from 6.23.0 to 7.24.2 by @dependabot[bot] in #54
  • chore(deps): bump fast-xml-parser and @aws-sdk/xml-builder by @dependabot[bot] in #55
  • chore(deps): bump fast-xml-parser from 5.3.8 to 5.5.7 by @dependabot[bot] in #56
  • feat: add .ebignore support with .gitignore fallback by @VarshaRagavendran in #57

Full Changelog: v1.0.2...v1.0.3

Contributors

VarshaRagavendran and dependabot
Assets 4
Loading