From 2a04ede262ae2860b832bdc58313205c69c18371 Mon Sep 17 00:00:00 2001
From: Javan lacerda <javanlacerda@google.com>
Date: Thu, 8 Aug 2024 16:49:10 +0000
Subject: [PATCH] check github oidc provider agains fulcio

Signed-off-by: Javan lacerda <javanlacerda@google.com>
---
 .github/workflows/verify.yml | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/.github/workflows/verify.yml b/.github/workflows/verify.yml
index 11d71f277..42daf8f95 100644
--- a/.github/workflows/verify.yml
+++ b/.github/workflows/verify.yml
@@ -92,3 +92,13 @@ jobs:
         run: |
           set -e
           go test -timeout 30s -run ^TestLoadFulcioConfig$ github.com/sigstore/fulcio/pkg/config
+  
+  signing:
+    name: signing
+    runs-on: ubuntu-latest
+    permissions:
+      id-token: write
+    steps:
+      - uses: sigstore/gh-action-sigstore-python@v3.0.0
+        with:
+          inputs: main.go