We've integrated @projectsigstore support for container image signing into the GitHub Actions starter workflow, so that developers can sign their container images by default. Check out the details!
https://github.blog/2021-12-06-safeguard-container-signing-capability-actions/

https://twitter.com/github/status/1467912222882074641