Bump sigstore/cosign-installer

dependabot[bot] · web-flow · commit f519625d5078 · 2025-05-12T17:29:47.000Z
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from b18d21aaa20ef40c4e681202a598b7591d5be577 to e9a05e6d32d7ed22b5656cd874ef31af58d05bfa. - [Release notes](https://github.com/sigstore/cosign-installer/releases) - [Commits](sigstore/cosign-installer@b18d21a...e9a05e6) --- updated-dependencies: - dependency-name: sigstore/cosign-installer dependency-version: e9a05e6d32d7ed22b5656cd874ef31af58d05bfa dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>
diff --git a/.github/workflows/check-vulnerabilities.yaml b/.github/workflows/check-vulnerabilities.yaml
@@ -16,7 +16,7 @@ jobs:
     runs-on: "${{ inputs.runs_on}}"
     steps:
       - name: Install Cosign
-        uses: sigstore/cosign-installer@b18d21aaa20ef40c4e681202a598b7591d5be577 # ratchet:sigstore/cosign-installer@main
+        uses: sigstore/cosign-installer@e9a05e6d32d7ed22b5656cd874ef31af58d05bfa # ratchet:sigstore/cosign-installer@main
         with:
           cosign-release: 'v1.13.1'
       - name: Check install!
