From afd0b6f84c821f7bbafb698c4c9c784a3f400470 Mon Sep 17 00:00:00 2001
From: Steven Silvester <steven.silvester@ieee.org>
Date: Thu, 25 Jul 2024 10:55:26 -0600
Subject: [PATCH] PYTHON-4541 Add attestations for Python Releases (#1746)

---
 .github/workflows/release-python.yml |  1 +
 .pre-commit-config.yaml              | 11 ++++-------
 2 files changed, 5 insertions(+), 7 deletions(-)

diff --git a/.github/workflows/release-python.yml b/.github/workflows/release-python.yml
index 5feb0d1ab..cee222d10 100644
--- a/.github/workflows/release-python.yml
+++ b/.github/workflows/release-python.yml
@@ -72,6 +72,7 @@ jobs:
     permissions:
       id-token: write
       contents: write
+      attestations: write
       security-events: write
     steps:
       - uses: mongodb-labs/drivers-github-tools/secure-checkout@v2
diff --git a/.pre-commit-config.yaml b/.pre-commit-config.yaml
index 29e5b809b..6e2b497e5 100644
--- a/.pre-commit-config.yaml
+++ b/.pre-commit-config.yaml
@@ -75,14 +75,11 @@ repos:
       stages: [manual]
 
 - repo: https://github.com/sirosen/check-jsonschema
-  rev: 0.27.0
+  rev: 0.29.0
   hooks:
-    - id: check-jsonschema
-      name: "Check GitHub Workflows"
-      files: ^\.github/workflows/
-      types: [yaml]
-      args: ["--schemafile", "https://json.schemastore.org/github-workflow"]
-      stages: [manual]
+    - id: check-github-workflows
+    - id: check-github-actions
+    - id: check-dependabot
 
 - repo: https://github.com/ariebovenberg/slotscheck
   rev: v0.19.0