Verify keyless signature cosign

Verify keyless sig pinning the signer identity and OIDC issuer; note: pin both

cosign verify --certificate-identity=<id> --certificate-oidc-issuer=<host> <host>/<name> | jq .
more cosign all 5 commands →