testing

Signed-off-by: Jonathan Gonzalez V <[email protected]>

Author: sxd

.github/workflows/bake.yaml

@@ -26,6 +26,7 @@ jobs:
       contents: read
       packages: write
       security-events: write
+      id-token: read
     outputs:
       metadata: ${{ steps.build.outputs.metadata }}
       images: ${{ steps.images.outputs.images }}
@@ -73,13 +74,10 @@ jobs:
       - name: Check Cosign install
         run: cosign version
       - name: Sign images using Cosing
-        env:
-          COSIGN_PRIVATE_KEY: ${{ secrets.COSIGN_PRIVATE_KEY }}
-          COSIGN_PASSWORD: ${{ secrets.COSIGN_PASSWORD }}
         run: |
           images=""
           images=$(echo '${{ steps.build.outputs.metadata }}' | jq -r '.[] | "\(.["image.name"]) \(.["containerimage.digest"])"' | awk -F' ' '{split($1, a, ","); for(i in a) print a[i] "@" $2}' | tr '\n' ' ')
-          cosign sign --yes --key env://COSIGN_PRIVATE_KEY ${images}
+          cosign sign --yes ${images}
 
   security:
     name: Security checks