Keyless sign via OIDC cosign

Keyless signing with Fulcio/Rekor via OIDC identity; modern: default in cosign v2

COSIGN_EXPERIMENTAL=1 cosign sign <host>/<name>@sha256:<id>
more cosign all 5 commands →