From ee70b7c8efe9ef39a4aa4a70746cd43d854a06e0 Mon Sep 17 00:00:00 2001
From: Gerald Pinder <gmpinder@gmail.com>
Date: Sun, 23 Jul 2023 22:45:18 -0400
Subject: [PATCH] Add verify step

---
 .gitlab-ci.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
index 68869ff..b9b6976 100644
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -69,3 +69,4 @@ build:
       done
     - IMAGE_DIGEST=$(skopeo inspect --format='{{.Digest}}' docker://$FULL_IMAGE_NAME:$TAGS)
     - cosign sign $FULL_IMAGE_NAME@$IMAGE_DIGEST
+    - cosign verify $FULL_IMAGE_NAME:$TAGS --certificate-identity "$CI_PROJECT_URL/.gitlab-ci.yml@refs/heads/$CI_DEFAULT_BRANCH" --certificate-oidc-issuer "$CI_SERVER_PROTOCOL://$CI_SERVER_HOST"