ossf/scorecard
1
1
Fork 0
mirror of https://github.com/ossf/scorecard.git synced 2024-09-11 08:55:27 +03:00
Code Issues Actions 6 Packages Projects Releases Wiki Activity

🌱 Bump sigstore/cosign-installer from 2.7.0 to 2.8.1 (#2402)

Browse Source 
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 2.7.0 to 2.8.1.
- [Release notes](https://github.com/sigstore/cosign-installer/releases)
- [Commits](ced07f21fb...9becc61764)

---
updated-dependencies:
- dependency-name: sigstore/cosign-installer
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
This commit is contained in:
dependabot[bot] 2022-10-26 08:59:37 -05:00 committed by GitHub
parent d56e2b840d
commit 9e2eafc3ae
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
.github/workflows/publishimage.yml vendored
View File

@ -61,7 +61,7 @@ jobs:
make install
make scorecard-ko
- name: Install Cosign
uses: sigstore/cosign-installer@ced07f21fb1da67979f539bbc6304c16c0677e76
uses: sigstore/cosign-installer@9becc617647dfa20ae7b1151972e9b3a2c338a2b
- name: Sign image
run: |
cosign sign ghcr.io/${{github.repository_owner}}/scorecard/v4:${{ github.sha }}