From 4b2c3c0c8ee97f31b9dac3859b40e0a48b8648ee Mon Sep 17 00:00:00 2001
From: Carlos Tadeu Panato Junior <ctadeu@gmail.com>
Date: Thu, 3 Mar 2022 18:59:06 +0100
Subject: [PATCH] Disable for now due some issues when downloading the knative
 module (#1546)

* Disable for now due some issues when downloading the knative module, maybe due to the replace in the go.mod

Signed-off-by: cpanato <ctadeu@gmail.com>

* sign packages as well

Signed-off-by: cpanato <ctadeu@gmail.com>
---
 .goreleaser.yml | 11 +++++++++--
 1 file changed, 9 insertions(+), 2 deletions(-)

diff --git a/.goreleaser.yml b/.goreleaser.yml
index 3bdbde7ce4c..0793d0ed56f 100644
--- a/.goreleaser.yml
+++ b/.goreleaser.yml
@@ -16,8 +16,9 @@ before:
 # this is needed because we are generating files that goreleaser was not aware to push to GH project release
   - /bin/bash -c 'if [ -z "$CI" ]; then make sign-container-release && make sign-keyless-release; fi'
 
-gomod:
-  proxy: true
+# Disable for now due some issues when downloading the knative module, maybe due to the replace in the go.mod
+# gomod:
+#   proxy: true
 
 sboms:
 - artifacts: binary
@@ -231,6 +232,12 @@ signs:
     cmd: ./dist/cosign-linux-amd64
     args: ["sign-blob", "--output-signature", "${artifact}-keyless.sig", "--output-certificate", "${artifact}-keyless.pem", "${artifact}"]
     artifacts: checksum
+  - id: packages-keyless
+    signature: "${artifact}-keyless.sig"
+    certificate: "${artifact}-keyless.pem"
+    cmd: ./dist/cosign-linux-amd64
+    args: ["sign-blob", "--output-signature", "${artifact}-keyless.sig", "--output-certificate", "${artifact}-keyless.pem", "${artifact}"]
+    artifacts: package
 
 nfpms:
   - id: cosign