From dac9a3292c2993e85cd7a53086c7ad7c58d248b5 Mon Sep 17 00:00:00 2001
From: Marco Franssen <marco.franssen@philips.com>
Date: Fri, 9 Feb 2024 20:35:43 +0100
Subject: [PATCH] Bump cosign to v2.2.3

Signed-off-by: Marco Franssen <marco.franssen@gmail.com>
---
 .github/workflows/golang.yml | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/golang.yml b/.github/workflows/golang.yml
index e3acf71..d62e6b2 100644
--- a/.github/workflows/golang.yml
+++ b/.github/workflows/golang.yml
@@ -79,7 +79,7 @@ jobs:
       - name: Install cosign
         uses: sigstore/cosign-installer@v3.4.0
         with:
-          cosign-release: 'v2.2.1'
+          cosign-release: 'v2.2.3'
 
       - name: Login to container registries
         if: startsWith(github.ref, 'refs/tags/')
@@ -153,7 +153,7 @@ jobs:
       - name: Install cosign
         uses: sigstore/cosign-installer@v3.4.0
         with:
-          cosign-release: 'v2.2.1'
+          cosign-release: 'v2.2.3'
 
       - name: Sign provenance
         run: |
@@ -189,7 +189,7 @@ jobs:
       - name: Install cosign
         uses: sigstore/cosign-installer@v3.4.0
         with:
-          cosign-release: 'v2.2.1'
+          cosign-release: 'v2.2.3'
 
       - name: Generate provenance for ${{ matrix.repo }}
         uses: philips-labs/slsa-provenance-action@v0.9.0