Merge branch 'main' into allowCustomTemplatingInImages

kichristensen · Sep 19, 2024 · a219392 · a219392
2 parents 60bccc6 + 8ab0430
commit a219392
Show file tree

Hide file tree

Showing 3 changed files with 12 additions and 12 deletions.
diff --git a/.github/workflows/build_pipelinesrelease_template.yml b/.github/workflows/build_pipelinesrelease_template.yml
@@ -35,7 +35,7 @@ jobs:
       run: mage build
       shell: bash
     - name: Publish Native Binaries
-      uses: actions/upload-artifact@v4.0.0
+      uses: actions/upload-artifact@v4.4.0
       with:
         name: build-bin
         path: "${{ github.workspace }}/bin"
@@ -56,7 +56,7 @@ jobs:
       run: mage XBuildAll
       shell: bash
     - name: Publish Release Binaries
-      uses: actions/upload-artifact@v4.0.0
+      uses: actions/upload-artifact@v4.4.0
       with:
         name: xbuild-bin
         path: "${{ github.workspace }}/bin"
@@ -112,7 +112,7 @@ jobs:
       with:
         go-version: ${{ inputs.goVersion }}
     - name: Download Cross-Compiled Porter Binaries
-      uses: actions/download-artifact@v4.1.0
+      uses: actions/download-artifact@v4.1.8
       with:
         name: xbuild-bin
         path: bin
@@ -141,7 +141,7 @@ jobs:
       with:
         go-version: ${{ inputs.goVersion }}
     - name: Download Cross-Compiled Porter Binaries
-      uses: actions/download-artifact@v4.1.0
+      uses: actions/download-artifact@v4.1.8
       with:
         name: xbuild-bin
         path: bin
@@ -182,7 +182,7 @@ jobs:
       with:
         go-version: ${{ inputs.goVersion }}
     - name: Download Cross-Compiled Porter Binaries
-      uses: actions/download-artifact@v4.1.0
+      uses: actions/download-artifact@v4.1.8
       with:
         name: xbuild-bin
         path: bin

diff --git a/.github/workflows/porter.yml b/.github/workflows/porter.yml
@@ -38,7 +38,7 @@ jobs:
         fi
       shell: bash
     - name: Publish Native Binaries
-      uses: actions/upload-artifact@v3.1.1
+      uses: actions/upload-artifact@v4.4.0
       with:
         name: build-bin
         path: "${{ github.workspace }}/bin"
@@ -58,7 +58,7 @@ jobs:
       run: go run mage.go -v XBuildAll
       shell: bash
     - name: Publish Release Binaries
-      uses: actions/upload-artifact@v3.1.1
+      uses: actions/upload-artifact@v4.4.0
       with:
         name: xbuild-bin
         path: "${{ github.workspace }}/bin"
@@ -111,7 +111,7 @@ jobs:
         cache: true
     - run: go version
     - name: Download Cross-Compiled Porter Binaries
-      uses: actions/download-artifact@v3.0.1
+      uses: actions/download-artifact@v4.1.8
       with:
         name: xbuild-bin
         path: bin
@@ -129,7 +129,7 @@ jobs:
     - name: checkout
       uses: actions/checkout@v3.5.0
     - name: Download Cross-Compiled Porter Binaries
-      uses: actions/download-artifact@v3.0.1
+      uses: actions/download-artifact@v4.1.8
       with:
         name: xbuild-bin
         path: bin

diff --git a/docs/content/docs/operations/signing-bundles.md b/docs/content/docs/operations/signing-bundles.md
@@ -27,9 +27,9 @@ Learn how to configure Porter to sign bundles.
 1. Cosign is installed and is available on the on the `PATH`.
 2. A key-pair for signing is available.
 
-Instructions on for the install Cosign can be found on the [Cosign Installation page](https://docs.sigstore.dev/system_config/installation/), and instructions on how to generate a key-pair can be found in the [Cosign Quickstart Guide](https://docs.sigstore.dev/signing/quickstart/#signing-with-a-generated-key).
+Instructions on for the install Cosign can be found on the [Cosign Installation page](https://docs.sigstore.dev/cosign/system_config/installation/), and instructions on how to generate a key-pair can be found in the [Cosign Signing with Self-Managed Keys](https://docs.sigstore.dev/cosign/key_management/signing_with_self-managed_keys/).
 
-🚧 Currently Porter does not support [Keyless Signing](https://docs.sigstore.dev/signing/overview/) or reading the key-pair from anything but files.
+🚧 Currently Porter does not support [Keyless Signing](https://docs.sigstore.dev/cosign/signing/overview/) or reading the key-pair from anything but files.
 
 ### Configuration
 
@@ -100,5 +100,5 @@ To sign run [porter publish](/cli/porter_publish/) with the `--sign-bundle` flag
 
 A bundle can be verified before installation by adding the `--verify-bundle` flag to [porter install](/cli/porter_publish/).
 
-[Cosign]: https://docs.sigstore.dev/signing/quickstart/
+[Cosign]: https://docs.sigstore.dev/quickstart/quickstart-cosign/
 [Notation]: https://notaryproject.dev/docs/quickstart-guides/quickstart-sign-image-artifact/