We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
The documentation in the README suggests using xargs to sign containers/blobs without a key. This is not needed and add complexity to the command.
I was able to sucessfully sign images from a GH action workflow with the following step:
- name: Sign the images with GitHub OIDC Token env: IMAGE: {{ env.IMAGE_REGISTRY}}/${{ env.REGISTRY_USER}}/${{ env.IMAGE_NAME }} run: | cosign sign \ -a "repo=${{ github.repository }}" \ -a "workflow=${{ github.workflow }}" \ -a "ref=${{ github.sha }}" \ --yes ${IMAGE}@${DIGEST}
I drew inspiration from there : https://github.com/sigstore/cosign/blob/main/scripts/sign-images-ci.sh
The text was updated successfully, but these errors were encountered:
Update action example for keyless signing as xarg is not required
a03609c
Fixes sigstore#131 Signed-off-by: jbtrystram <jbtrystram@redhat.com>
Update action example for keyless signing as xarg is not required (#132)
60bbdf4
Fixes #131 Signed-off-by: jbtrystram <jbtrystram@redhat.com>
Successfully merging a pull request may close this issue.
The documentation in the README suggests using xargs to sign containers/blobs without a key.
This is not needed and add complexity to the command.
I was able to sucessfully sign images from a GH action workflow with the following step:
I drew inspiration from there : https://github.com/sigstore/cosign/blob/main/scripts/sign-images-ci.sh
The text was updated successfully, but these errors were encountered: