diff --git a/.github/workflows/release-draft-binaries.yml b/.github/workflows/release-draft-binaries.yml
index f747e4f8313..007493e560e 100644
--- a/.github/workflows/release-draft-binaries.yml
+++ b/.github/workflows/release-draft-binaries.yml
@@ -246,7 +246,7 @@ jobs:
         ls $GITHUB_WORKSPACE
 
     - name: Install Cosign
-      uses: sigstore/cosign-installer@dc72c7d5c4d10cd6bcb8cf6e3fd625a9e5e537da
+      uses: sigstore/cosign-installer@d7d6bc7722e3daa8354c50bcb52f4837da5e9b6a
       with:
         cosign-release: 'v2.0.0'
 
@@ -359,7 +359,7 @@ jobs:
           echo "FILE_NAME=${final_name}.tar.gz" >> $GITHUB_ENV
 
       - name: Install Cosign
-        uses: sigstore/cosign-installer@dc72c7d5c4d10cd6bcb8cf6e3fd625a9e5e537da
+        uses: sigstore/cosign-installer@d7d6bc7722e3daa8354c50bcb52f4837da5e9b6a
         with:
           cosign-release: 'v2.0.0'
 
@@ -424,7 +424,7 @@ jobs:
         run: shasum -a 256 *ockam* > sha256sums.txt
 
       - name: Install Cosign
-        uses: sigstore/cosign-installer@dc72c7d5c4d10cd6bcb8cf6e3fd625a9e5e537da
+        uses: sigstore/cosign-installer@d7d6bc7722e3daa8354c50bcb52f4837da5e9b6a
         with:
           cosign-release: 'v2.0.0'