NPM Provenance - a build signature badgeΒ #893
Description
As an user,
I want to be assured that all released packages are coming from notable source,
to be able to trust the package I'm adopting into my project.
Setup an NPM provenance for CI that will mark all of our release packages as "β Build & signed on GitHub Actions".
https://www.npmjs.com/package/sigstore#provenance
