Skip to content

Commit

Permalink
Remove remnant of cosign key signing step
Browse files Browse the repository at this point in the history
Signed-off-by: Jonathon Anderson <[email protected]>
  • Loading branch information
anderbubble committed Dec 10, 2023
1 parent df741b3 commit 64ffe30
Showing 1 changed file with 0 additions and 8 deletions.
8 changes: 0 additions & 8 deletions .github/workflows/container-publish.yml
Original file line number Diff line number Diff line change
Expand Up @@ -136,14 +136,6 @@ jobs:
cache-to: type=gha,mode=max

# https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions#using-an-intermediate-environment-variable
- name: Sign image with a key
if: github.event_name != 'pull_request'
run: |
cosign sign --yes "${TAGS}@${DIGEST}"
env:
TAGS: ${{ steps.docker_meta.outputs.tags }}
DIGEST: ${{ steps.build-and-push.outputs.digest }}

- name: Sign the images with GitHub OIDC Token
if: github.event_name != 'pull_request'
env:
Expand Down

0 comments on commit 64ffe30

Please sign in to comment.