From 16a2a2593662e567a166c9087c4f0ab2bec3c0b0 Mon Sep 17 00:00:00 2001 From: Radu Jipa Date: Thu, 30 Jun 2022 18:20:24 +0100 Subject: [PATCH] docs: use `--output-signature` with cosign sign (#3218) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit `cosign sign` complains with the following error when using `--output` тип release failed after 14.73s error=sign: cosign failed: exit status 1: WARNING: the '--output' flag is deprecated and will be removed in the future. Use '--output-signature' --- www/docs/customization/sign.md | 5 ++--- 1 file changed, 2 insertions(+), 3 deletions(-) diff --git a/www/docs/customization/sign.md b/www/docs/customization/sign.md index a6ddd04e7..82124a735 100644 --- a/www/docs/customization/sign.md +++ b/www/docs/customization/sign.md @@ -50,7 +50,6 @@ signs: # Defaults to `["--output", "${signature}", "--detach-sign", "${artifact}"]` args: ["--output", "${signature}", "${artifact}", "{{ .ProjectName }}"] - # Which artifacts to sign # # all: all artifacts @@ -126,7 +125,7 @@ Assuming you have a `cosign.key` in the repository root and a `COSIGN_PWD` envir signs: - cmd: cosign stdin: '{{ .Env.COSIGN_PWD }}' - args: ["sign-blob", "--key=cosign.key", "--output=${signature}", "${artifact}"] + args: ["sign-blob", "--key=cosign.key", "--output-signature=${signature}", "${artifact}"] artifacts: all ``` @@ -209,7 +208,7 @@ but you'll need to manually add the `.sig` files to the release and/or archive: builds: - hooks: post: - - sh -c "COSIGN_PASSWORD=$COSIGN_PWD cosign sign-blob --key cosign.key --output dist/{{ .ProjectName }}_{{ .Version }}_{{ .Target }}.sig {{ .Path }}" + - sh -c "COSIGN_PASSWORD=$COSIGN_PWD cosign sign-blob --key cosign.key --output-signature dist/{{ .ProjectName }}_{{ .Version }}_{{ .Target }}.sig {{ .Path }}" # add to the release directly: release: