update cosign version docker pubish

graphsense · Mar 26, 2024 · cb15fdb · cb15fdb
1 parent 345fb70
commit cb15fdb
Showing 1 changed file with 4 additions and 5 deletions.
diff --git a/.github/workflows/github-packages-publish.yaml b/.github/workflows/github-packages-publish.yaml
@@ -1,4 +1,4 @@
-name: Publish Artifact Github Docker Hub
+name: Publish to Github Docker Hub
 
 # This workflow uses actions that are not certified by GitHub.
 # They are provided by a third-party and are governed by
@@ -27,7 +27,6 @@ jobs:
   build:
 
     runs-on: ubuntu-latest
-    if: startsWith(github.ref, 'refs/tags/v')
     permissions:
       contents: read
       packages: write
@@ -43,9 +42,9 @@ jobs:
       # https://github.com/sigstore/cosign-installer
       - name: Install cosign
         if: github.event_name != 'pull_request'
-        uses: sigstore/cosign-installer@6e04d228eb30da1757ee4e1dd75a0ec73a653e06 #v3.1.1
+        uses: sigstore/cosign-installer@v3.4.0
         with:
-          cosign-release: 'v2.1.1'
+          cosign-release: 'v2.2.2'
 
       # Set up BuildKit Docker container builder to be able to build
       # multi-platform images and export cache
@@ -97,4 +96,4 @@ jobs:
           DIGEST: ${{ steps.build-and-push.outputs.digest }}
         # This step uses the identity token to provision an ephemeral certificate
         # against the sigstore community Fulcio instance.
-        run: echo "${TAGS}" | xargs -I {} cosign sign --yes {}@${DIGEST}
+        run: echo "${TAGS}" | xargs -I {} cosign sign --yes {}@${DIGEST}