Your feature request related to a problem? Please describe.

Not a problem, is a feature request.

The idea is to sign the release artifacts using cosign when doing the release.
The project is already using GoReleaser and GitHub actions and that makes things easier to implement 😃

This is an initial step for a more secure release and lets the consumers have the ability to verify the release artifacts.

I can help to implement this feature if the team decides to move this idea forward.

Describe the solution you'd like.

Using the current GoRelease config and the GitHub Actions we can sign the binaries/images using a keyless approach and push the signed artifacts all together to the GitHub release.

Describe alternatives you've considered.

n/a

Additional context.

n/a