From 25cdbb3bfff57fbeec3271b8bbaf98487725de96 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 29 Apr 2024 18:48:22 +0000
Subject: [PATCH] build(deps): bump the production-dependencies group with 2
 updates

Bumps the production-dependencies group with 2 updates: [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) and [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer).


Updates `golangci/golangci-lint-action` from 4 to 5
- [Release notes](https://github.com/golangci/golangci-lint-action/releases)
- [Commits](https://github.com/golangci/golangci-lint-action/compare/v4...v5)

Updates `sigstore/cosign-installer` from 3.4.0 to 3.5.0
- [Release notes](https://github.com/sigstore/cosign-installer/releases)
- [Commits](https://github.com/sigstore/cosign-installer/compare/v3.4.0...v3.5.0)

---
updated-dependencies:
- dependency-name: golangci/golangci-lint-action
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: production-dependencies
- dependency-name: sigstore/cosign-installer
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/build.yml        | 2 +-
 .github/workflows/image-build.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
index 2657b2f01..4f9285080 100644
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -166,7 +166,7 @@ jobs:
           git diff --exit-code ../go.mod ../go.sum
 
       - name: Lint
-        uses: golangci/golangci-lint-action@v4
+        uses: golangci/golangci-lint-action@v5
         with:
           ## https://github.com/golangci/golangci-lint-action/issues/369
           working-directory: ${{ env.GOPATH }}/src/github.com/bpfman/bpfman
diff --git a/.github/workflows/image-build.yaml b/.github/workflows/image-build.yaml
index 257620ca5..872b1b26f 100644
--- a/.github/workflows/image-build.yaml
+++ b/.github/workflows/image-build.yaml
@@ -464,7 +464,7 @@ jobs:
           # prettier-ignore
           go-version: '1.21' # yamllint disable-line rule:quoted-strings
 
-      - uses: sigstore/cosign-installer@v3.4.0
+      - uses: sigstore/cosign-installer@v3.5.0
 
       - uses: actions/checkout@v4
         if: ${{ matrix.image.bpf_build_wrapper == 'rust' }}