From a9799a637f706df245462c85d1873a2067b728b7 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 2 Mar 2026 17:17:31 +0000
Subject: [PATCH] Bump sigstore/cosign/cosign from v3.0.4 to v3.0.5 in /builds

Bumps sigstore/cosign/cosign from v3.0.4 to v3.0.5.

---
updated-dependencies:
- dependency-name: sigstore/cosign/cosign
  dependency-version: v3.0.5
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 builds/Dockerfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/builds/Dockerfile b/builds/Dockerfile
index be7742e9e..53610332e 100644
--- a/builds/Dockerfile
+++ b/builds/Dockerfile
@@ -1,5 +1,5 @@
 ARG STACK_VERSION="24"
-FROM ghcr.io/sigstore/cosign/cosign:v3.0.4@sha256:0b015a3557a64a751712da8a6395534160018eaaa2d969882a85a336de9adb70 AS cosign
+FROM ghcr.io/sigstore/cosign/cosign:v3.0.5@sha256:be924970ba7438c22e18067dec5637946d6566eac711f5bedd1584e7137008fb AS cosign
 FROM heroku/heroku:${STACK_VERSION}-build
 
 ARG STACK_VERSION