Merge pull request #313 from joshuar/dependabot/github_actions/sigsto…

…re/cosign-installer-3.7.0 ci(github): ⬆️ bump sigstore/cosign-installer from 3.6.0 to 3.7.0
joshuar · Oct 15, 2024 · 358933b · 358933b
2 parents 0cf41c4 + 7e5e550
commit 358933b
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
@@ -116,7 +116,7 @@ jobs:
           TARGETPLATFORM: ${{ matrix.platform }}
       - name: Install cosign
         id: cosign_install
-        uses: sigstore/cosign-installer@4959ce089c160fddf62f7b42464195ba1a56d382 # v3
+        uses: sigstore/cosign-installer@dc72c7d5c4d10cd6bcb8cf6e3fd625a9e5e537da # v3
       - name: Sign artifacts with cosign
         id: cosign_sign
         shell: bash
@@ -313,7 +313,7 @@ jobs:
         run: |
           docker buildx imagetools inspect ${{ env.REGISTRY }}/${{ env.IMAGE }}:${{ steps.docker_metadata.outputs.version }}
       - name: Check and install cosign
-        uses: sigstore/cosign-installer@4959ce089c160fddf62f7b42464195ba1a56d382 # v3
+        uses: sigstore/cosign-installer@dc72c7d5c4d10cd6bcb8cf6e3fd625a9e5e537da # v3
       - name: Sign image with a key
         env:
           TAGS: ${{ steps.docker_metadata.outputs.tags }}