When users follow the README to verify Chainguard images due to keyless signature capabilities errors are returned:
$ COSIGN_EXPERIMENTAL=1 cosign verify cgr.dev/chainguard/apko | jq
Error: --certificate-identity or --certificate-identity-regexp is required for verification in keyless mode
main.go:74: error during command execution: --certificate-identity or --certificate-identity-regexp is required for verification in keyless mode
Perhaps the snippet needs to be updated to something like:
When users follow the README to verify Chainguard images due to keyless signature capabilities errors are returned:
Perhaps the snippet needs to be updated to something like: