From 025dcc8e959d04e6017113dc5cf600c8e0839bff Mon Sep 17 00:00:00 2001
From: bagtoad <47394200+BagToad@users.noreply.github.com>
Date: Wed, 14 Aug 2024 10:20:41 -0600
Subject: [PATCH 1/3] Use latest checkout version, generate attestations, and
 specify go version file input.

---
 pkg/cmd/extension/ext_tmpls/goBinWorkflow.yml    | 5 ++++-
 pkg/cmd/extension/ext_tmpls/otherBinWorkflow.yml | 3 ++-
 2 files changed, 6 insertions(+), 2 deletions(-)

diff --git a/pkg/cmd/extension/ext_tmpls/goBinWorkflow.yml b/pkg/cmd/extension/ext_tmpls/goBinWorkflow.yml
index dfda64d0e..9557f7200 100644
--- a/pkg/cmd/extension/ext_tmpls/goBinWorkflow.yml
+++ b/pkg/cmd/extension/ext_tmpls/goBinWorkflow.yml
@@ -10,5 +10,8 @@ jobs:
   release:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
       - uses: cli/gh-extension-precompile@v1
+        with:
+          generate_attestations: true
+          go_version_file: go.mod
diff --git a/pkg/cmd/extension/ext_tmpls/otherBinWorkflow.yml b/pkg/cmd/extension/ext_tmpls/otherBinWorkflow.yml
index 5b7c867a1..60669be08 100644
--- a/pkg/cmd/extension/ext_tmpls/otherBinWorkflow.yml
+++ b/pkg/cmd/extension/ext_tmpls/otherBinWorkflow.yml
@@ -10,7 +10,8 @@ jobs:
   release:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
       - uses: cli/gh-extension-precompile@v1
         with:
           build_script_override: "script/build.sh"
+          generate_attestations: true

From 820f4f34694ddfeba8f6719e863419d53dc5c956 Mon Sep 17 00:00:00 2001
From: Kynan Ware <47394200+BagToad@users.noreply.github.com>
Date: Wed, 14 Aug 2024 12:02:11 -0600
Subject: [PATCH 2/3] Do not generate build attestations for
 otherBinWorkflow.yml

---
 pkg/cmd/extension/ext_tmpls/otherBinWorkflow.yml | 1 -
 1 file changed, 1 deletion(-)

diff --git a/pkg/cmd/extension/ext_tmpls/otherBinWorkflow.yml b/pkg/cmd/extension/ext_tmpls/otherBinWorkflow.yml
index 60669be08..78ba05171 100644
--- a/pkg/cmd/extension/ext_tmpls/otherBinWorkflow.yml
+++ b/pkg/cmd/extension/ext_tmpls/otherBinWorkflow.yml
@@ -14,4 +14,3 @@ jobs:
       - uses: cli/gh-extension-precompile@v1
         with:
           build_script_override: "script/build.sh"
-          generate_attestations: true

From 5b7070f027aa7537a869dc6456640e159a303f95 Mon Sep 17 00:00:00 2001
From: Kynan Ware <47394200+BagToad@users.noreply.github.com>
Date: Wed, 14 Aug 2024 15:16:45 -0600
Subject: [PATCH 3/3] include required permissions to generate attestations

---
 pkg/cmd/extension/ext_tmpls/goBinWorkflow.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/pkg/cmd/extension/ext_tmpls/goBinWorkflow.yml b/pkg/cmd/extension/ext_tmpls/goBinWorkflow.yml
index 9557f7200..080019c2a 100644
--- a/pkg/cmd/extension/ext_tmpls/goBinWorkflow.yml
+++ b/pkg/cmd/extension/ext_tmpls/goBinWorkflow.yml
@@ -5,6 +5,8 @@ on:
       - "v*"
 permissions:
   contents: write
+  id-token: write
+  attestations: write
 
 jobs:
   release: