You can use the linked artifacts page to connect your organization's artifacts to their build details, deployment context, and security metadata. The linked artifacts page collects metadata for artifacts built with GitHub Actions in your organization's repositories, regardless of whether the artifacts are stored on GitHub. For more information, see About linked artifacts.
Viewing an artifact
-
On GitHub, navigate to the main page of your organization.
-
Under your organization name, click the Packages tab.
-
In the left sidebar, click Linked artifacts.
-
Click the artifact you want to view.
-
On the artifact's page, you can:
- View the artifact's deployment history and registry storage details
- Click through to the repository where the artifact's source code is defined
- If available, click on the artifact's provenance attestation to find the workflow run that was used to build the artifact
For more information about how data enters the linked artifacts page, see Uploading storage and deployment data to the linked artifacts page.
Exporting artifact metadata
To export metadata in bulk for an audit, use the List artifact deployment records and List artifact storage records endpoints of the artifact metadata API.