Skip to content

build(deps): bump github.com/sigstore/sigstore from 1.7.1 to 1.7.2#199

Merged
DrDaveD merged 1 commit intomainfrom
dependabot/go_modules/main/github.com/sigstore/sigstore-1.7.2
Aug 9, 2023
Merged

build(deps): bump github.com/sigstore/sigstore from 1.7.1 to 1.7.2#199
DrDaveD merged 1 commit intomainfrom
dependabot/go_modules/main/github.com/sigstore/sigstore-1.7.2

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 9, 2023

Bumps github.com/sigstore/sigstore from 1.7.1 to 1.7.2.

Release notes

Sourced from github.com/sigstore/sigstore's releases.

v1.7.2

What's Changed

Full Changelog: sigstore/sigstore@v1.7.1...v1.7.2

Commits
  • 8a7b9db Bump TUF root version (#1312)
  • c75fa95 build(deps): bump github.com/aws/aws-sdk-go in /pkg/signature/kms/aws (#1313)
  • d99eb27 build(deps): bump golang.org/x/crypto in /pkg/signature/kms/azure (#1316)
  • 2c7c8d0 build(deps): bump golang.org/x/oauth2 in /pkg/signature/kms/gcp (#1317)
  • 26e3051 build(deps): bump github.com/go-rod/rod from 0.114.1 to 0.114.2 (#1301)
  • c4a7d2a build(deps): bump github.com/aws/aws-sdk-go in /pkg/signature/kms/aws (#1310)
  • e3c7ba8 build(deps): bump github.com/aws/aws-sdk-go in /pkg/signature/kms/aws (#1306)
  • 230fc37 build(deps): bump github.com/aws/aws-sdk-go-v2/service/kms (#1307)
  • 2a86035 build(deps): bump github.com/aws/aws-sdk-go-v2/config (#1305)
  • 8008774 build(deps): bump github.com/aws/aws-sdk-go-v2/config (#1299)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
build(deps): bump github.com/sigstore/sigstore from 1.7.1 to 1.7.2
5e4665a 
Bumps [github.com/sigstore/sigstore](https://github.com/sigstore/sigstore) from 1.7.1 to 1.7.2.
- [Release notes](https://github.com/sigstore/sigstore/releases)
- [Commits](sigstore/sigstore@v1.7.1...v1.7.2)

---
updated-dependencies:
- dependency-name: github.com/sigstore/sigstore
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Aug 9, 2023
@codecov-commenter
Copy link

codecov-commenter commented Aug 9, 2023

Codecov Report

Merging #199 (5e4665a) into main (1738c9e) will increase coverage by 0.09%.
Report is 8 commits behind head on main.
The diff coverage is 78.94%.

❗ Your organization is not using the GitHub App Integration. As a result you may experience degraded service beginning May 15th. Please install the Github App Integration for your organization. Read more.

@@            Coverage Diff             @@
##             main     #199      +/-   ##
==========================================
+ Coverage   72.80%   72.89%   +0.09%     
==========================================
  Files          35       35              
  Lines        2901     2955      +54     
==========================================
+ Hits         2112     2154      +42     
- Misses        636      646      +10     
- Partials      153      155       +2
Flag Coverage Δ
unittests 72.89% <78.94%> (+0.09%) ⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

Files Changed Coverage Δ
pkg/sif/sif.go 25.43% <0.00%> (-0.93%) ⬇️
internal/app/siftool/info.go 88.95% <50.00%> (-1.34%) ⬇️
pkg/siftool/add.go 46.47% <75.00%> (+0.32%) ⬆️
pkg/sif/descriptor.go 75.41% <88.46%> (+2.21%) ⬆️
pkg/sif/descriptor_input.go 86.95% <100.00%> (+0.51%) ⬆️
pkg/sif/select.go 97.29% <100.00%> (+0.15%) ⬆️

📣 We’re building smart automated test selection to slash your CI/CD build times. Learn more

@DrDaveD DrDaveD merged commit 3815750 into main Aug 9, 2023
@dependabot dependabot bot deleted the dependabot/go_modules/main/github.com/sigstore/sigstore-1.7.2 branch August 9, 2023 18:20
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@DrDaveD DrDaveD DrDaveD approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@codecov-commenter @DrDaveD