Codefresh has become an official OpenID Connect (OIDC) provider for the Sigstore project, enabling a more secure and streamlined process for signing and verifying artifacts in their pipelines. This development allows users to implement keyless signing, which eliminates the need for managing cryptographic key pairs manually, thus addressing traditional security challenges associated with artifact signing. The new signing process uses the OpenID Connect protocol to verify the identity of the signing pipeline without long-lived key pairs, enhancing transparency and security. Codefresh's integration with Sigstore allows users to sign container images with minimal configuration, using YAML in their pipelines, and provides a standardized method for verifying container images' authenticity. Through this integration, organizations can ensure that their software artifacts are securely signed and verified, offering a robust solution to artifact security and identity verification challenges in continuous integration and delivery workflows.