Validate and document keyless signing with self-hosted GitLab/Sigstore

Everyone can contribute. Help move this issue forward while earning points, leveling up and collecting rewards.

• Close this issue

Summary

Keyless signing was released in GitLab 16.2. This should already work with self-hosted GitLab/Sigstore, but this needs to be validated and documented.

Implementation plan

• Setup a self-hosted sigstore stack
• Validate that keyless signing works correctly with it
• If not, identify necessary changes and create implementation issues
• Produce documentation on how to use keyless signing on self-hosted GitLab