diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 928f1bd..2c08bfb 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -254,7 +254,7 @@ jobs:
           ls -lah
 
       - name: Install cosign
-        uses: sigstore/cosign-installer@cad07c2e89fa2edd6e2d7bab4c1aa38e53f76003 # v4.1.1
+        uses: sigstore/cosign-installer@6f9f17788090df1f26f669e9d70d6ae9567deba6 # v4.1.2
         with:
           # Override the action default (v3.0.3) to v3.0.5 for security fixes and deterministic bundle output.
           cosign-release: v3.0.5