diff --git a/.github/actions/build_cli/action.yml b/.github/actions/build_cli/action.yml
index 0f40d4476..284b01e0f 100644
--- a/.github/actions/build_cli/action.yml
+++ b/.github/actions/build_cli/action.yml
@@ -104,7 +104,7 @@ runs:
       run: |
         echo "$COSIGN_PUBLIC_KEY" > cosign.pub
         # Enabling experimental mode also publishes signature to Rekor
-        COSIGN_EXPERIMENTAL=1 cosign sign-blob --key env://COSIGN_PRIVATE_KEY "${OUTPUT_PATH}" > "${OUTPUT_PATH}.sig"
+        COSIGN_EXPERIMENTAL=1 cosign sign-blob --yes --key env://COSIGN_PRIVATE_KEY "${OUTPUT_PATH}" > "${OUTPUT_PATH}.sig"
         # Verify - As documentation & check
         # Local Signature (input: artifact, key, signature)
         cosign verify-blob --key cosign.pub --signature "${OUTPUT_PATH}.sig" "${OUTPUT_PATH}"
diff --git a/.github/workflows/draft-release.yml b/.github/workflows/draft-release.yml
index cf78ca5b9..e80c88843 100644
--- a/.github/workflows/draft-release.yml
+++ b/.github/workflows/draft-release.yml
@@ -287,7 +287,7 @@ jobs:
       - name: Build signed SBOM
         run: |
           syft build/constellation-linux-amd64 --catalogers go-module --file constellation.spdx.sbom -o spdx-json
-          cosign sign-blob --key env://COSIGN_PRIVATE_KEY constellation.spdx.sbom > constellation.spdx.sbom.sig
+          cosign sign-blob --yes --key env://COSIGN_PRIVATE_KEY constellation.spdx.sbom > constellation.spdx.sbom.sig
           grype constellation.spdx.sbom --fail-on high --only-fixed --add-cpes-if-none
         env:
           COSIGN_EXPERIMENTAL: 1
diff --git a/rfc/003-secure-software-distribution.md b/rfc/003-secure-software-distribution.md
index 8199e3820..e23411bfd 100644
--- a/rfc/003-secure-software-distribution.md
+++ b/rfc/003-secure-software-distribution.md
@@ -69,7 +69,7 @@ This keypair could also be backed-up onto USB stick / SD card.
 # COSIGN_PRIVATE_KEY=
 # COSIGN_PUBLIC_KEY=
 go build constellation
-COSIGN_EXPERIMENTAL=1 cosign sign-blob --key env://COSIGN_PRIVATE_KEY constellation > constellation.sig
+COSIGN_EXPERIMENTAL=1 cosign sign-blob --yes --key env://COSIGN_PRIVATE_KEY constellation > constellation.sig
 # We provide: cosign.pub, constellation.sig, constellation
 echo "$COSIGN_PUBLIC_KEY" > cosign.pub
 cosign verify-blob --key cosign.pub --signature constellation.sig constellation
@@ -130,7 +130,7 @@ measurements:
 # Set these beforehand!
 # COSIGN_PASSWORD=
 # COSIGN_PRIVATE_KEY=
-COSIGN_EXPERIMENTAL=1 cosign sign-blob --key cosign.key measurements.yaml > measurements.yaml.sig
+COSIGN_EXPERIMENTAL=1 cosign sign-blob --yes --key cosign.key measurements.yaml > measurements.yaml.sig
 ```
 
 ```mermaid