From 16ffbb343f21ac372aad0460021e9c17a193cdb5 Mon Sep 17 00:00:00 2001
From: Gerald Pinder <gmpinder@gmail.com>
Date: Mon, 19 Feb 2024 14:22:26 -0500
Subject: [PATCH] fix: Switch to using --certificate-identity-regexp for Github
 Keyless verification

---
 src/commands/build.rs | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/commands/build.rs b/src/commands/build.rs
index 2406c9a..d77c901 100644
--- a/src/commands/build.rs
+++ b/src/commands/build.rs
@@ -688,7 +688,7 @@ fn sign_images(image_name: &str, tag: Option<&str>) -> Result<()> {
 
             if !Command::new("cosign")
                 .arg("verify")
-                .arg("--certificate-github-workflow-ref")
+                .arg("--certificate-identity-regexp")
                 .arg(&github_worflow_ref)
                 .arg("--certificate-oidc-issuer")
                 .arg(GITHUB_TOKEN_ISSUER_URL)