From 1ef38f6d8e1e60c26ab2b4b6536df8131c6c62c5 Mon Sep 17 00:00:00 2001
From: Thomas Fink <53316058+ThomasAFink@users.noreply.github.com>
Date: Mon, 21 Oct 2024 11:54:44 +0200
Subject: [PATCH] Bump Sigstore Cosign Version to 2.2.0

---
 .github/workflows/docker-publish.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/docker-publish.yml b/.github/workflows/docker-publish.yml
index daf560b..fc456f9 100644
--- a/.github/workflows/docker-publish.yml
+++ b/.github/workflows/docker-publish.yml
@@ -54,7 +54,7 @@ jobs:
         if: github.event_name != 'pull_request'
         uses: sigstore/cosign-installer@e1523de7571e31dbe865fd2e80c5c7c23ae71eb4 # v3.4.0
         with:
-          cosign-release: 'v2.1.1'
+          cosign-release: 'v2.2.0'
 
       # Set up BuildKit Docker container builder to be able to build
       # multi-platform images and export cache
@@ -106,4 +106,4 @@ jobs:
           DIGEST: ${{ steps.build-and-push.outputs.digest }}
         # This step uses the identity token to provision an ephemeral certificate
         # against the sigstore community Fulcio instance.
-        run: echo "${TAGS}" | xargs -I {} cosign sign --yes {}@${DIGEST}
\ No newline at end of file
+        run: echo "${TAGS}" | xargs -I {} cosign sign --yes {}@${DIGEST}