[BUG] `jwtGithubAudience` parameter is not set to `sigstore` by default

Question

[BUG] `jwtGithubAudience` parameter is not set to `sigstore` by default

Opened this issue 6 months ago · 0 comments

ljupchokotev commented 6 months ago

Vault server version

v1.16.2

vault-action version

v3

Describe the bug

The documentation specifies that the jwtGithubAudience parameter has a default value of sigstore in the README.md. This is actually not true, as the audience is set to the repository owner URL (e.g. org url).

To Reproduce

N/A

Expected behavior

The jwtGithubAudience parameter should be set to sigstore by default as per the documentation. Or the documentation needs to be fixed.

Log Output

For the most verbose logs, add a secret called
ACTIONS_STEP_DEBUG
with the value true. Then, re-run the workflow if possible and post the raw
logs for the step here with any sensitive information masked or removed.

Additional context

Add any other context about the problem here.