cosign

by sigstorev3.1.1

Last updated Jun 9, 2026

Code signing and transparency for containers and binaries

Install with winget

$ winget install --id Sigstore.Cosign --exact --version 3.1.1

Run in Command Prompt, PowerShell, or Windows Terminal. Prompts for any agreements.

Built by Pckgr

For Intune admins

Stop chasing app updates. Pckgr patches them for you.

Automated application patching for Microsoft Intune. Pckgr keeps a curated library of 1,000+ apps continuously up-to-date in your tenant via Microsoft Graph - no manual repackaging, no chasing vendor sites.

Start free 30-day trial

No credit card required.

Installers · v3.1.1

Architecture	Type	Scope	Install	Download
x64	Portable	-		Direct

Copy a command tailored to that specific architecture, type, and scope - useful when winget would otherwise pick a different default.

Security

9 known CVEs via NVD

medium4.3Patched in wingetCVE-2026-39395affects before 2.6.3, 3.0.6Apr 7, 2026
Cosign provides code signing and transparency for containers and binaries. Prior to 3.0.6 and 2.6.3, cosign verify-blob-attestation may erroneously report a "Verified OK" result for attestations with malformed payloads or mismatched predicate types. For old-format bundles and de...
Vendor advisory
low3.7Patched in wingetCVE-2026-24122affects before 3.0.5Feb 19, 2026
Cosign provides code signing and transparency for containers and binaries. In versions 3.0.4 and below, an issuing certificate with a validity that expires before the leaf certificate will be considered valid during verification even if the provided timestamp would mean the issu...
Patch Vendor advisory
medium5.5Patched in wingetCVE-2026-22703affects before 2.6.2, 3.0.4Jan 9, 2026
Cosign provides code signing and transparency for containers and binaries. Prior to versions 2.6.2 and 3.0.4, Cosign bundle can be crafted to successfully verify an artifact even if the embedded Rekor entry does not reference the artifact's digest, signature or public key. When...
Patch Vendor advisory
medium4.2Patched in wingetCVE-2024-29903affects before 2.2.4Apr 10, 2024
Cosign provides code signing and transparency for containers and binaries. Prior to version 2.2.4, maliciously-crafted software artifacts can cause denial of service of the machine running Cosign thereby impacting all services on the machine. The root cause is that Cosign create...
Patch Vendor advisory
medium4.2Patched in wingetCVE-2024-29902affects before 2.2.4Apr 10, 2024
Cosign provides code signing and transparency for containers and binaries. Prior to version 2.2.4, a remote image with a malicious attachment can cause denial of service of the host machine running Cosign. This can impact other services on the machine that rely on having memory...
Patch Vendor advisory
low3.1Patched in wingetCVE-2023-46737affects before 2.2.1Nov 7, 2023
Cosign is a sigstore signing tool for OCI containers. Cosign is susceptible to a denial of service by an attacker controlled registry. An attacker who controls a remote registry can return a high number of attestations and/or signatures to Cosign and cause Cosign to enter a long...
Patch Vendor advisory
medium5.5Patched in wingetCVE-2022-36056affects before 1.12.0Sep 14, 2022
Cosign is a project under the sigstore organization which aims to make signatures invisible infrastructure. In versions prior to 1.12.0 a number of vulnerabilities have been found in cosign verify-blob, where Cosign would successfully verify an artifact when verification should...
Patch
high7.1Patched in wingetCVE-2022-35929affects before 1.10.1Aug 4, 2022
cosign is a container signing and verification utility. In versions prior to 1.10.1 cosign can report a false positive if any attestation exists. `cosign verify-attestation` used with the `--type` flag will report a false positive verification when there is at least one attestat...
Patch

Showing 8 of 9. Source: NVD, updated 4h ago. Patch status is best-effort: NVD's fix version is compared against the latest version in winget, but the two version formats don't always align. Confirm with the vendor advisory before treating any specific build as safe.

See a CVE that affects your fleet? Push the patched version to Intune in one click with Pckgr - automated patching is the only way to keep up.

Frequently asked questions

How do I install cosign on Windows?

Open Windows Terminal, PowerShell, or Command Prompt and run: winget install --id Sigstore.Cosign --exact --version 3.1.1. winget downloads the installer from sigstore and runs it. Requires Windows 10 (1809+) or Windows 11.

How do I install cosign silently for unattended deployment?

Add --silent and accept the agreements upfront: winget install --id Sigstore.Cosign --exact 3.1.1 --silent --accept-package-agreements --accept-source-agreements. This is the variant Intune, Configuration Manager, and other deployment tools should use.

How do I uninstall cosign via winget?

Run: winget uninstall --id Sigstore.Cosign --exact. Add --silent for unattended uninstalls. winget will use the registered uninstaller from cosign's Apps & Features entry.

Is cosign free?

cosign is distributed under Apache-2.0. Refer to the publisher (https://github.com/sigstore/cosign) for the full license terms - Wingetly itself does not charge for installation.

Does cosign work on Windows 10?

Yes, as long as your Windows 10 build supports winget (1809 or newer). winget ships with App Installer on Windows 10/11 and pulls cosign directly from the publisher.

How do I keep cosign up to date?

Run winget upgrade --id Sigstore.Cosign --exact, or winget upgrade --all to update everything winget tracks. We index 10 versions of cosign from microsoft/winget-pkgs.

Recent versions

3.1.1latest
3.0.6
3.0.5
3.0.4
3.0.3
3.0.2
3.0.1
2.6.1
2.6.0
2.5.3