Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

fix: upgrade Cosign to v2 #21122

Merged
merged 5 commits into from Mar 21, 2024
Merged

fix: upgrade Cosign to v2 #21122

merged 5 commits into from Mar 21, 2024

Conversation

suzuki-shunsuke
Copy link
Member

@suzuki-shunsuke suzuki-shunsuke commented Mar 20, 2024

@suzuki-shunsuke suzuki-shunsuke added bug Something isn't working breaking change and removed bug Something isn't working breaking change labels Mar 20, 2024
@suzuki-shunsuke suzuki-shunsuke added this to the v4.155.0 milestone Mar 21, 2024
@suzuki-shunsuke
Copy link
Member Author

suzuki-shunsuke commented Mar 21, 2024

https://github.com/aquaproj/aqua-registry/actions/runs/8382491417/job/22956365186?pr=21122

ERRO[0026] install the package                           aqua_version=2.25.1-5 asset_name=nfpm_2.11.0_Linux_x86_64.tar.gz cosign_opts="--certificate-identity-regexp, https://github\\.com/goreleaser/nfpm/\\.github/workflows/release\\.yml@.*, --certificate-oidc-issuer, https://token.actions.githubusercontent.com,/ --signature, https://github.com/goreleaser/nfpm/releases/download/v2.11.0/checksums.txt.sig, --certificate, https://github.com/goreleaser/nfpm/releases/download/v2.11.0/checksums.txt.pem" env=linux/amd64 error="verify a checksum file with Cosign: verify a signature file with Cosign: verify with Cosign" package_name=goreleaser/nfpm package_version=v2.11.0 program=aqua registry=standard target=/tmp/601494830

https://github.com/goreleaser/nfpm
https://github.com/goreleaser/nfpm/releases/tag/v2.11.0

Error: none of the expected identities matched what was in the certificate, got subjects [carlos@becker.software] with issuer https://github.com/login/oauth
main.go:74: error during command execution: none of the expected identities matched what was in the certificate, got subjects [carlos@becker.software] with issuer https://github.com/login/oauth

@suzuki-shunsuke suzuki-shunsuke marked this pull request as ready for review March 21, 2024 22:35
@suzuki-shunsuke suzuki-shunsuke merged commit c5db64a into main Mar 21, 2024
17 checks passed
@suzuki-shunsuke suzuki-shunsuke deleted the fix-update-cosign-to-v2 branch March 21, 2024 22:35
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

None yet

1 participant