Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix(deps): update go #2743

Closed
wants to merge 1 commit into from
Closed

fix(deps): update go #2743

wants to merge 1 commit into from

Conversation

renovate-bot
Copy link
Contributor

Mend Renovate

This PR contains the following updates:

Package Type Update Change
github.com/sigstore/cosign/v2 require minor v2.1.1 -> v2.2.0
github.com/sigstore/rekor require minor v1.2.2-0.20230530122220-67cc9e58bd23 -> v1.3.0
github.com/sigstore/sigstore require patch v1.7.1 -> v1.7.3
golang.org/x/oauth2 require minor v0.10.0 -> v0.12.0

⚠ Dependency Lookup Warnings ⚠

Warnings were logged while processing this repo. Please check the Dependency Dashboard for more information.

Release Notes

sigstore/cosign (github.com/sigstore/cosign/v2)

v2.2.0

Compare Source

Enhancements

  • switch to uploading DSSE types to rekor instead of intoto (#​3113)
  • add 'cosign sign' command-line parameters for mTLS (#​3052)
  • improve error messages around bundle != payload hash (#​3146)
  • make VerifyImageAttestation function public (#​3156)
  • Switch to cryptoutils function for SANS (#​3185)
  • Handle HTTP_1_1_REQUIRED errors in github provider (#​3172)

Bug Fixes

  • Fix nondeterminsitic timestamps (#​3121)

Documentation

  • doc: Add example of sign-blob with key in env var (#​3152)
  • add deprecation notice for cosign-releases GCS bucket (#​3148)
  • update doc links (#​3186)

Others

  • Upgrade to go1.21 (#​3188)
  • Updates ci tests (#​3142)
  • test using latest release of scaffolding (#​3187)
  • ci: free up disk space for the gh runner (#​3169)
  • update go-github to v53 (#​3116)
  • call e2e test for cosign attach (#​3112)
  • bump build cross to use go1.20.6 and cosign image to 2.1.1 (#​3108)

Contributors

  • Bob Callaway
  • Carlos Tadeu Panato Junior
  • Dmitry Savintsev
  • Hayden B
  • Hector Fernandez
  • Jason Hall
  • Jon Johnson
  • Jubril Oyetunji
  • Paulo Gomes
  • Priya Wadhwa
  • 张志强
sigstore/rekor (github.com/sigstore/rekor)

v1.3.0

Compare Source

New Features

  • feat: Support publishing new log entries to Pub/Sub topics (#​1580)
  • Change values of Identity.Raw, add fingerprints (#​1628)
  • Extract all subjects from SANs for x509 verifier (#​1632)
  • Fix type comment for Identity struct (#​1619)
  • Refactor Identities API (#​1611)
  • Refactor Verifiers to return multiple keys (#​1601)

Quality Enhancements

Bug Fixes

  • Update openapi.yaml (#​1655)
  • pass transient errors through retrieveLogEntry (#​1653)
  • return full entryID on HTTP 409 responses (#​1650)
  • Update checkpoint link (#​1597)
  • Use correct log index in inclusion proof (#​1599)
  • remove instrumentation library (#​1595)
  • pki: clean up fuzzer (#​1594)
  • alpine: add max metadata size to fuzzer (#​1571)

Contributors

  • AdamKorcz
  • Appu
  • Bob Callaway
  • Carlos Tadeu Panato Junior
  • Ceridwen Coghlan
  • Hayden B
  • James Alseth
sigstore/sigstore (github.com/sigstore/sigstore)

v1.7.3

Compare Source

What's Changed

New Contributors

Full Changelog: sigstore/sigstore@v1.7.2...v1.7.3

v1.7.2

Compare Source

What's Changed

Full Changelog: sigstore/sigstore@v1.7.1...v1.7.2

Configuration

📅 Schedule: Branch creation - "every weekend" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

@renovate-bot
fix(deps): update go
7cfa1eb 
Signed-off-by: Mend Renovate <[email protected]>
@renovate-bot renovate-bot deleted the renovate/go branch October 1, 2023 08:05
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@asraa asraa Awaiting requested review from asraa

@ianlewis ianlewis Awaiting requested review from ianlewis

@laurentsimon laurentsimon Awaiting requested review from laurentsimon laurentsimon is a code owner

@joshuagl joshuagl Awaiting requested review from joshuagl joshuagl is a code owner

@kpk47 kpk47 Awaiting requested review from kpk47 kpk47 is a code owner

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@renovate-bot