thank you @thepwagner ! let's salsify this thing! 🌶️
Pete Wagner has given me great feedback on how to improve our release action. Opening this issue so we keep track of it and address it in a separate PR.
Things we'd like to do:
[ ] sign our binaries. Pete suggested using fulcio!
[ ] we might need to add sigstore/cosign-installer to the worfklow. example
Discovered in: https://github.com/Shopify/kubeaudit/pull/539#pullrequestreview-1362946224
thank you @thepwagner ! let's salsify this thing! 🌶️
Pete Wagner has given me great feedback on how to improve our release action. Opening this issue so we keep track of it and address it in a separate PR.
Things we'd like to do:
For more details, please refer to this PR and the discussions we had there!