Archives
/
smallstep-certificates
mirror of https://github.com/smallstep/certificates
2
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #1563 from smallstep/carl/fix-cosign-regexp

Browse Source 
Fix cosign identity regexp
pull/1564/head
Carl Tashian 9 months ago committed by GitHub
parent c1d0a90db5 13db94721a
commit 88dda9cd37
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 4 additions and 4 deletions
Show Stats Download Patch File Download Diff File

8
.goreleaser.yml
Unescape Escape View File

@ -164,11 +164,11 @@ release:
``` ```
cosign verify-blob \ cosign verify-blob \
--certificate ~/Downloads/step-ca_darwin_{{ .Version }}_amd64.tar.gz.sig.pem \ --certificate step-ca_darwin_{{ .Version }}_amd64.tar.gz.sig.pem \
--signature ~/Downloads/step-ca_darwin_{{ .Version }}_amd64.tar.gz.sig \ --signature step-ca_darwin_{{ .Version }}_amd64.tar.gz.sig \
--certificate-identity-regexp "https://github\.com/smallstep/certificates/.*" \ --certificate-identity-regexp "https://github\.com/smallstep/workflows/.*" \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \ --certificate-oidc-issuer https://token.actions.githubusercontent.com \
~/Downloads/step-ca_darwin_{{ .Version }}_amd64.tar.gz step-ca_darwin_{{ .Version }}_amd64.tar.gz
``` ```
The `checksums.txt` file (in the `Assets` section below) contains a checksum for every artifact in the release. The `checksums.txt` file (in the `Assets` section below) contains a checksum for every artifact in the release.

Write Preview
Loading…
Cancel
Save