From 05956f893d522c7935b9e2752f71b07acc8d37cf Mon Sep 17 00:00:00 2001
From: Anders da Silva Rytter Hansen <andersrh@users.noreply.github.com>
Date: Sat, 2 May 2026 12:49:03 -0300
Subject: [PATCH] remove signing

---
 .forgejo/workflows/os.yml | 20 --------------------
 1 file changed, 20 deletions(-)

diff --git a/.forgejo/workflows/os.yml b/.forgejo/workflows/os.yml
index 9d6a648..f648922 100644
--- a/.forgejo/workflows/os.yml
+++ b/.forgejo/workflows/os.yml
@@ -24,7 +24,6 @@ jobs:
     permissions:
       contents: read
       packages: write
-      id-token: write # Påkrævet til cosign keyless signering
 
     steps:
 
@@ -60,10 +59,6 @@ jobs:
             --label "org.opencontainers.image.source=https://forge.pc-rytteren.dk/${{ github.repository }}" \
             -t raw-img .
 
-          # Gem det primære tag til signering (vi tager det første fra listen)
-          PRIMARY_TAG=$(echo "${{ steps.meta.outputs.tags }}" | head -n 1)
-          echo "primary_tag=$PRIMARY_TAG" >> $FORGEJO_OUTPUT
-
       - name: Push to Forgejo Container Registry
         if: github.event_name != 'pull_request'
         run: |
@@ -73,18 +68,3 @@ jobs:
             buildah push "$tag"
           done
 
-      - name: Install cosign
-        if: github.event_name != 'pull_request'
-        uses: sigstore/cosign-installer@v3.3.0
-
-      - name: Log into Forgejo Container Registry (Cosign)
-        if: github.event_name != 'pull_request'
-        run: |
-          cosign login ${{ env.REGISTRY }} -u ${{ github.actor }} -p ${{ secrets.PACKAGE_TOKEN }}
-
-      - name: Sign image
-        if: github.event_name != 'pull_request'
-        run: |
-          # Vi signerer det primære tag.
-          # Vi bruger --yes til at acceptere betingelserne automatisk.
-          cosign sign --yes "${{ steps.build-image.outputs.primary_tag }}"