From 84572fb26f399fcad645341d749bc1db7fdaf723 Mon Sep 17 00:00:00 2001
From: Stefan Agner <stefan@agner.ch>
Date: Wed, 20 Mar 2024 16:06:04 +0100
Subject: [PATCH] Revert "Disable cosign verification by default (#199)"

This reverts commit eec2fe473801c8dfe3e78e3ac4516f79d04a2b18.
---
 action.yml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/action.yml b/action.yml
index 47e528c..81f6f39 100644
--- a/action.yml
+++ b/action.yml
@@ -25,6 +25,10 @@ runs:
     - shell: bash
       run: |
         docker pull ghcr.io/home-assistant/amd64-builder:${{ steps.version.outputs.version }}
+        cosign verify \
+          --certificate-oidc-issuer https://token.actions.githubusercontent.com \
+          --certificate-identity-regexp https://github.com/home-assistant/builder/.* \
+          ghcr.io/home-assistant/amd64-builder:${{ steps.version.outputs.version }}
 
     - shell: bash
       id: builder