From 4f6215c67b1df171f7f1a0078dd64c51e3dc18d0 Mon Sep 17 00:00:00 2001
From: Lachlan Harris <lachlanharris.dev@gmail.com>
Date: Thu, 25 Sep 2025 16:13:05 +1000
Subject: [PATCH] Remove obsolete SLSA workflow

Workflow is obsolete in favour of `immutable releases` built into GitHub
---
 .github/workflows/slsa-generator.yml | 66 ----------------------------
 1 file changed, 66 deletions(-)
 delete mode 100644 .github/workflows/slsa-generator.yml

diff --git a/.github/workflows/slsa-generator.yml b/.github/workflows/slsa-generator.yml
deleted file mode 100644
index 427e61f..0000000
--- a/.github/workflows/slsa-generator.yml
+++ /dev/null
@@ -1,66 +0,0 @@
-# This workflow uses actions that are not certified by GitHub.
-# They are provided by a third-party and are governed by
-# separate terms of service, privacy policy, and support
-# documentation.
-
-# This workflow lets you generate SLSA provenance file for your project.
-# The generation satisfies level 3 for the provenance requirements - see https://slsa.dev/spec/v0.1/requirements
-# The project is an initiative of the OpenSSF (openssf.org) and is developed at
-# https://github.com/slsa-framework/slsa-github-generator.
-# The provenance file can be verified using https://github.com/slsa-framework/slsa-verifier.
-# For more information about SLSA and how it improves the supply-chain, visit slsa.dev.
-
-name: SLSA generic generator
-on:
-  workflow_dispatch:
-  release:
-    types: [created]
-
-jobs:
-  build:
-    runs-on: self-hosted
-    outputs:
-      digests: ${{ steps.hash.outputs.digests }}
-
-    steps:
-      - uses: actions/checkout@v4
-
-      # ========================================================
-      #
-      # Step 1: Build your artifacts.
-      #
-      # ========================================================
-      - name: Build artifacts
-        run: |
-          make
-      - name: Upload binary
-        uses: actions/upload-artifact@v4
-        with:
-          name: vbo
-          path: bin/vbo
-
-      # ========================================================
-      #
-      # Step 2: Add a step to generate the provenance subjects
-      #         as shown below. Update the sha256 sum arguments
-      #         to include all binaries that you generate
-      #         provenance for.
-      #
-      # ========================================================
-      - name: Generate subject for provenance
-        id: hash
-        run: |
-          set -euo pipefail
-          files="bin/vbo"
-          echo "hashes=$(sha256sum $files | base64 -w0)" >> "${GITHUB_OUTPUT}"
-
-  provenance:
-    needs: [build]
-    permissions:
-      actions: read   # To read the workflow path.
-      id-token: write # To sign the provenance.
-      contents: write # To add assets to a release.
-    uses: slsa-framework/slsa-github-generator/.github/workflows/generator_generic_slsa3.yml@v2.1.0
-    with:
-      base64-subjects: "${{ needs.build.outputs.digests }}"
-      upload-assets: true # Optional: Upload to a new release