diff --git a/scripts/build.sh b/scripts/build.sh
index 1a42d8c..3008878 100644
--- a/scripts/build.sh
+++ b/scripts/build.sh
@@ -108,8 +108,16 @@ fi
 # Setup container signing
 echo "Setup container signing in policy.json and cosign.yaml"
 echo "Registry to write: $IMAGE_REGISTRY"
-sed -i "s ghcr.io/ublue-os $IMAGE_REGISTRY g" /usr/etc/containers/policy.json
-sed -i "s ublue-os.pub cosign.pub g" /usr/etc/containers/policy.json
+
+jq '.transports.docker."$IMAGE_REGISTRY" += [{
+"type": "sigstoreSigned",
+"keyPath": "/usr/etc/pki/containers/cosign.pub",
+"signedIdentity": {
+        "type": "matchRepository"
+}
+}]' /usr/etc/containers/policy.json > /usr/etc/containers/policy.json
+
+cp /usr/etc/containers/registries.d/ublue-os.yaml /usr/etc/containers/registries.d/cosign.yaml
 sed -i "s ghcr.io/ublue-os $IMAGE_REGISTRY g" /usr/etc/containers/registries.d/cosign.yaml
 
 # Run "post" scripts.