conforma
diff --git a/‎.tool-versions‎
Lines changed: 1 addition & 1 deletion b/‎.tool-versions‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎Dockerfile‎
Lines changed: 1 addition & 1 deletion b/‎Dockerfile‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎Dockerfile.dist‎
Lines changed: 1 addition & 1 deletion b/‎Dockerfile.dist‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎Makefile‎
Lines changed: 1 addition & 1 deletion b/‎Makefile‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎acceptance/attestation/attestation.go‎
Lines changed: 2 additions & 2 deletions b/‎acceptance/attestation/attestation.go‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎acceptance/crypto/keys.go‎
Lines changed: 2 additions & 2 deletions b/‎acceptance/crypto/keys.go‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎acceptance/go.mod‎
Lines changed: 90 additions & 89 deletions b/‎acceptance/go.mod‎
Lines changed: 90 additions & 89 deletions
diff --git a/‎acceptance/go.sum‎
Lines changed: 346 additions & 487 deletions b/‎acceptance/go.sum‎
Lines changed: 346 additions & 487 deletions
diff --git a/‎acceptance/image/image.go‎
Lines changed: 8 additions & 8 deletions b/‎acceptance/image/image.go‎
Lines changed: 8 additions & 8 deletions
diff --git a/‎acceptance/rekor/rekor.go‎
Lines changed: 2 additions & 2 deletions b/‎acceptance/rekor/rekor.go‎
Lines changed: 2 additions & 2 deletions
@@ -1 +1 @@
-golang 1.24.6
+golang 1.25.3
@@ -16,7 +16,7 @@
 
 ## Build
 
-FROM docker.io/library/golang:1.24.6 AS build
+FROM docker.io/library/golang:1.25.3 AS build
 
 ARG TARGETOS
 ARG TARGETARCH
 
@@ -16,7 +16,7 @@
 
 ## Build
 
-FROM registry.access.redhat.com/ubi9/go-toolset:1.24.6@sha256:6234f572204d672a0ee0686d748fbb9b7b05679368bf0d7a4446e13970e58060 AS build
+FROM registry.access.redhat.com/ubi9/go-toolset:1.25.3@sha256:e8938564f866174a6d79e55dfe577c2ed184b1f53e91d782173fb69b07ce69ef AS build
 
 ARG TARGETOS
 ARG TARGETARCH
 
@@ -12,7 +12,7 @@ _SHELL := bash
 SHELL=$(if $@,$(info ❱ [1m$@[0m))$(_SHELL)
 ROOT_DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
 COPY:=The Conforma Contributors
-COSIGN_VERSION=$(shell go list -f '{{.Version}}' -m github.com/sigstore/cosign/v2)
+COSIGN_VERSION=$(shell go list -f '{{.Version}}' -m github.com/sigstore/cosign/v3)
 E2E_INSTRUMENTATION_FLAGS := $(if $(filter $(E2E_INSTRUMENTATION),true),-cover -covermode atomic)
 
 ##@ Information
 
@@ -26,8 +26,8 @@ import (
 
 	v1 "github.com/google/go-containerregistry/pkg/v1"
 	"github.com/in-toto/in-toto-golang/in_toto"
-	"github.com/sigstore/cosign/v2/pkg/cosign/attestation"
-	"github.com/sigstore/cosign/v2/pkg/types"
+	"github.com/sigstore/cosign/v3/pkg/cosign/attestation"
+	"github.com/sigstore/cosign/v3/pkg/types"
 	"github.com/sigstore/sigstore/pkg/signature/dsse"
 	"github.com/sigstore/sigstore/pkg/signature/options"
 
 
@@ -22,7 +22,7 @@ import (
 	"fmt"
 
 	"github.com/cucumber/godog"
-	"github.com/sigstore/cosign/v2/pkg/cosign"
+	"github.com/sigstore/cosign/v3/pkg/cosign"
 	"github.com/sigstore/sigstore/pkg/signature"
 
 	"github.com/conforma/cli/acceptance/testenv"
@@ -101,7 +101,7 @@ func SignerWithKey(ctx context.Context, keyName string) (signature.SignerVerifie
 		return nil, err
 	}
 
-	return cosign.LoadPrivateKey(key.PrivateBytes, key.Password())
+	return cosign.LoadPrivateKey(key.PrivateBytes, key.Password(), nil)
 }
 
 // PublicKeysFrom returns a map of all public keys encoded in PEM format
 
@@ -46,13 +46,13 @@ import (
 	s "github.com/google/go-containerregistry/pkg/v1/static"
 	"github.com/google/go-containerregistry/pkg/v1/types"
 	"github.com/in-toto/in-toto-golang/in_toto"
-	"github.com/sigstore/cosign/v2/pkg/cosign"
-	"github.com/sigstore/cosign/v2/pkg/cosign/bundle"
-	"github.com/sigstore/cosign/v2/pkg/oci"
-	"github.com/sigstore/cosign/v2/pkg/oci/layout"
-	cosignRemote "github.com/sigstore/cosign/v2/pkg/oci/remote"
-	"github.com/sigstore/cosign/v2/pkg/oci/static"
-	cosigntypes "github.com/sigstore/cosign/v2/pkg/types"
+	"github.com/sigstore/cosign/v3/pkg/cosign"
+	"github.com/sigstore/cosign/v3/pkg/cosign/bundle"
+	"github.com/sigstore/cosign/v3/pkg/oci"
+	"github.com/sigstore/cosign/v3/pkg/oci/layout"
+	cosignRemote "github.com/sigstore/cosign/v3/pkg/oci/remote"
+	"github.com/sigstore/cosign/v3/pkg/oci/static"
+	cosigntypes "github.com/sigstore/cosign/v3/pkg/types"
 	rc "github.com/sigstore/rekor/pkg/client"
 	"github.com/sigstore/sigstore/pkg/cryptoutils"
 	"github.com/sigstore/sigstore/pkg/signature"
@@ -726,7 +726,7 @@ func createAndPushKeylessImage(ctx context.Context, imageName string) (context.C
 		return ctx, err
 	}
 
-	if err := cosignRemote.WriteSignedImageIndexImages(ref, sii); err != nil {
+	if err := cosignRemote.WriteSignedImageIndexImages(ref, sii, ""); err != nil {
 		return ctx, err
 	}
 
 
@@ -36,8 +36,8 @@ import (
 	"github.com/cyberphone/json-canonicalization/go/src/webpki.org/jsoncanonicalizer"
 	"github.com/go-openapi/strfmt"
 	"github.com/secure-systems-lab/go-securesystemslib/encrypted"
-	"github.com/sigstore/cosign/v2/pkg/cosign"
-	"github.com/sigstore/cosign/v2/pkg/cosign/bundle"
+	"github.com/sigstore/cosign/v3/pkg/cosign"
+	"github.com/sigstore/cosign/v3/pkg/cosign/bundle"
 	"github.com/sigstore/rekor/pkg/generated/models"
 	hashedrekord "github.com/sigstore/rekor/pkg/types/hashedrekord/v0.0.1"
 	intoto "github.com/sigstore/rekor/pkg/types/intoto/v0.0.2"
Original file line number	Diff line number	Diff line change
`@@ -22,7 +22,7 @@ import (`
`22`	`22`	`"fmt"`
`23`	`23`
`24`	`24`	`"github.com/cucumber/godog"`
`25`		`- "github.com/sigstore/cosign/v2/pkg/cosign"`
	`25`	`+ "github.com/sigstore/cosign/v3/pkg/cosign"`
`26`	`26`	`"github.com/sigstore/sigstore/pkg/signature"`
`27`	`27`
`28`	`28`	`"github.com/conforma/cli/acceptance/testenv"`
`@@ -101,7 +101,7 @@ func SignerWithKey(ctx context.Context, keyName string) (signature.SignerVerifie`
`101`	`101`	`return nil, err`
`102`	`102`	`}`
`103`	`103`
`104`		`- return cosign.LoadPrivateKey(key.PrivateBytes, key.Password())`
	`104`	`+ return cosign.LoadPrivateKey(key.PrivateBytes, key.Password(), nil)`
`105`	`105`	`}`
`106`	`106`
`107`	`107`	`// PublicKeysFrom returns a map of all public keys encoded in PEM format`