Changelog
- 6306802 Update advanced.md: fix typo in annotation (#684)
- 0d0c0fb remove erroneous character from release workflow definition (#701)
You can verify the signatures of both the checksums.txt file and the published docker images using cosign.
sha256sum -c goldilocks_v4.11.1_checksums.txt --ignore-missing
cosign verify-blob goldilocks_v4.11.1_checksums.txt --signature=goldilocks_v4.11.1_checksums.txt.sig --key https://artifacts.fairwinds.com/cosign.pub
cosign verify us-docker.pkg.dev/fairwinds-ops/oss/goldilocks:v4 --key https://artifacts.fairwinds.com/cosign.pub