From 6b918e6a79781e244b3c32c2e69c7ff25bc8ad74 Mon Sep 17 00:00:00 2001
From: Renner0E <80410025+Renner0E@users.noreply.github.com>
Date: Thu, 17 Oct 2024 18:11:22 +0200
Subject: [PATCH] fix another dead cosign URL (#82)

---
 README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/README.md b/README.md
index a798bfe..5d3f804 100644
--- a/README.md
+++ b/README.md
@@ -43,7 +43,7 @@ These images are signed with sisgstore's [cosign](https://docs.sigstore.dev/quic
 
     cosign verify --key cosign.pub ghcr.io/ublue-os/boxkit
     
-If you're forking this repo you should [read the docs](https://docs.github.com/en/actions/security-guides/encrypted-secrets) on keeping secrets in github. You need to [generate a new keypair](https://docs.sigstore.dev/cosign/overview/) with cosign. The public key can be in your public repo (your users need it to check the signatures), and you can paste the private key in Settings -> Secrets -> Actions.
+If you're forking this repo you should [read the docs](https://docs.github.com/en/actions/security-guides/encrypted-secrets) on keeping secrets in github. You need to [generate a new keypair](https://docs.sigstore.dev/cosign/key_management/signing_with_self-managed_keys/) with cosign. The public key can be in your public repo (your users need it to check the signatures), and you can paste the private key in Settings -> Secrets -> Actions.
 
 ## Finding Good Base Images