From 539b66e8253d97a34be0a4ade3a53e93ac6eaaae Mon Sep 17 00:00:00 2001
From: Stefan Agner <stefan@agner.ch>
Date: Wed, 20 Mar 2024 15:57:02 +0100
Subject: [PATCH] Disable cosign verification by default

Since we can't sign the current builder, we also need to disable
verification of it's signature. This avoids another chicken-egg-problem.
---
 action.yml | 4 ----
 1 file changed, 4 deletions(-)

diff --git a/action.yml b/action.yml
index 81f6f39..47e528c 100644
--- a/action.yml
+++ b/action.yml
@@ -25,10 +25,6 @@ runs:
     - shell: bash
       run: |
         docker pull ghcr.io/home-assistant/amd64-builder:${{ steps.version.outputs.version }}
-        cosign verify \
-          --certificate-oidc-issuer https://token.actions.githubusercontent.com \
-          --certificate-identity-regexp https://github.com/home-assistant/builder/.* \
-          ghcr.io/home-assistant/amd64-builder:${{ steps.version.outputs.version }}
 
     - shell: bash
       id: builder