commit 2dcf4bbba4f51d088f2c19c5ed71531f932d087a
author gcf-owl-bot[bot] <78513119+gcf-owl-bot[bot]@users.noreply.github.com> Thu Jun 29 13:28:19 2023 -0400
committer GitHub <noreply@github.com> Thu Jun 29 13:28:19 2023 -0400
tree de6bdd46c2014a669a44a43dd8dd4840a66ea60a
parent 0acda8c96b23af2238ae0f4536e4fbb98bc7d787

chore: store artifacts in placer (#508)

Source-Link: https://github.com/googleapis/synthtool/commit/cb960373d12d20f8dc38beee2bf884d49627165e
Post-Processor: gcr.io/cloud-devrel-public-resources/owlbot-python:latest@sha256:2d816f26f728ac8b24248741e7d4c461c09764ef9f7be3684d557c9632e46dbd

Co-authored-by: Owl Bot <gcf-owl-bot[bot]@users.noreply.github.com>

.github/.OwlBot.lock.yaml

diff --git a/.github/.OwlBot.lock.yaml b/.github/.OwlBot.lock.yaml
index 02a4ded..98994f4 100644
--- a/.github/.OwlBot.lock.yaml
+++ b/.github/.OwlBot.lock.yaml
@@ -13,5 +13,5 @@
 # limitations under the License.
 docker:
   image: gcr.io/cloud-devrel-public-resources/owlbot-python:latest
-  digest: sha256:240b5bcc2bafd450912d2da2be15e62bc6de2cf839823ae4bf94d4f392b451dc
-# created: 2023-06-03T21:25:37.968717478Z
+  digest: sha256:2d816f26f728ac8b24248741e7d4c461c09764ef9f7be3684d557c9632e46dbd
+# created: 2023-06-28T17:03:33.371210701Z

.kokoro/release/common.cfg

diff --git a/.kokoro/release/common.cfg b/.kokoro/release/common.cfg
index de4f6f8..5890a7f 100644
--- a/.kokoro/release/common.cfg
+++ b/.kokoro/release/common.cfg
@@ -38,3 +38,12 @@
   key: "SECRET_MANAGER_KEYS"
   value: "releasetool-publish-reporter-app,releasetool-publish-reporter-googleapis-installation,releasetool-publish-reporter-pem"
 }
+
+# Store the packages we uploaded to PyPI.  That way, we have a record of exactly
+# what we published, which we can use to generate SBOMs and attestations.
+action {
+  define_artifacts {
+    regex: "github/python-api-core/**/*.tar.gz"
+    strip_prefix: "github/python-api-core"
+  }
+}