From e06f8dc211cbe45a0fe95355e306063e49f66642 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Mon, 22 Jun 2026 19:51:13 +0000 Subject: [PATCH] Update sigstore/cosign-installer action to v4.1.2 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- .github/workflows/job-docker-build-push.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/job-docker-build-push.yml b/.github/workflows/job-docker-build-push.yml index e4e4cce4..faa24ce2 100644 --- a/.github/workflows/job-docker-build-push.yml +++ b/.github/workflows/job-docker-build-push.yml @@ -48,7 +48,7 @@ jobs: common_repository_token=${{ secrets.COMMON_REPOSITORY_TOKEN }} - name: Install Cosign if: ${{ (github.head_ref || github.ref) == format('refs/heads/{0}',inputs.release_branch) }} - uses: sigstore/cosign-installer@cad07c2e89fa2edd6e2d7bab4c1aa38e53f76003 # v4.1.1 + uses: sigstore/cosign-installer@6f9f17788090df1f26f669e9d70d6ae9567deba6 # v4.1.2 - name: Sign container image if: ${{ (github.head_ref || github.ref) == format('refs/heads/{0}',inputs.release_branch) }} run: cosign sign --yes ${{ inputs.imageTagName }}@${{ steps.build.outputs.digest }}