diff --git a/.github/workflows/generator-image.yml b/.github/workflows/generator-image.yml
index 98db9fd6ca..79346f9a8f 100644
--- a/.github/workflows/generator-image.yml
+++ b/.github/workflows/generator-image.yml
@@ -111,7 +111,9 @@ jobs:
           IMGTAG: ${{ steps.image_tag.outputs.imgtag }}
           DIGEST: ${{ steps.push.outputs.digest }}
         run: |
-          cosign sign --yes \
-            "${{ env.REGISTRY }}/${{ env.IMAGE }}:${IMGTAG}@${DIGEST}"
-          cosign sign --yes \
-            "${{ env.REGISTRY }}/${{ env.IMAGE }}:latest@${DIGEST}"
+          images="${{ env.REGISTRY }}/${{ env.IMAGE }}:${IMGTAG}@${DIGEST}"
+          images+=" ${{ env.REGISTRY }}/${{ env.IMAGE }}:latest@${DIGEST}"
+          cosign sign --yes ${images}
+          cosign verify ${images} \
+            --certificate-identity-regexp='.*' \
+            --certificate-oidc-issuer='https://token.actions.githubusercontent.com'
diff --git a/.github/workflows/publish_dockerhub_k8s_cache_main.yml b/.github/workflows/publish_dockerhub_k8s_cache_main.yml
index e036de7a16..ab2d20dc97 100644
--- a/.github/workflows/publish_dockerhub_k8s_cache_main.yml
+++ b/.github/workflows/publish_dockerhub_k8s_cache_main.yml
@@ -174,3 +174,6 @@ jobs:
             images+="${tag}@${DIGEST} "
           done
           cosign sign --yes ${images}
+          cosign verify ${images} \
+            --certificate-identity-regexp='.*' \
+            --certificate-oidc-issuer='https://token.actions.githubusercontent.com'
diff --git a/.github/workflows/publish_dockerhub_main.yml b/.github/workflows/publish_dockerhub_main.yml
index d2e8edad8a..e3106eca5f 100644
--- a/.github/workflows/publish_dockerhub_main.yml
+++ b/.github/workflows/publish_dockerhub_main.yml
@@ -174,3 +174,7 @@ jobs:
             images+="${tag}@${DIGEST} "
           done
           cosign sign --yes ${images}
+          cosign verify ${images} \
+            --certificate-identity-regexp='.*' \
+            --certificate-oidc-issuer='https://token.actions.githubusercontent.com'
+