diff --git a/synthtool/gcp/templates/python_library/.kokoro/release/common.cfg b/synthtool/gcp/templates/python_library/.kokoro/release/common.cfg
index 7f54912d3..fbba1da42 100644
--- a/synthtool/gcp/templates/python_library/.kokoro/release/common.cfg
+++ b/synthtool/gcp/templates/python_library/.kokoro/release/common.cfg
@@ -38,3 +38,12 @@ env_vars: {
   key: "SECRET_MANAGER_KEYS"
   value: "releasetool-publish-reporter-app,releasetool-publish-reporter-googleapis-installation,releasetool-publish-reporter-pem"
 }
+
+# Store the packages we uploaded to PyPI.  That way, we have a record of exactly
+# what we published, which we can use to generate SBOMs and attestations.
+action {
+  define_artifacts {
+    regex: "github/{{ metadata['repo']['repo'].split('/')[1] }}/**/*.tar.gz"
+    strip_prefix: "github/{{ metadata['repo']['repo'].split('/')[1] }}"
+  }
+}