Skip to content

Commit

Permalink
Bump github.com/sigstore/fulcio from 1.6.4 to 1.6.5 (#235)
Browse files Browse the repository at this point in the history 
Bumps [github.com/sigstore/fulcio](https://github.com/sigstore/fulcio)
from 1.6.4 to 1.6.5.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/sigstore/fulcio/releases">github.com/sigstore/fulcio's
releases</a>.</em></p>
<blockquote>
<h1>v1.6.5</h1>
<h2>Features</h2>
<ul>
<li>use go1.23.2 (<a
href="https://redirect.github.com/sigstore/fulcio/issues/1834">#1834</a>)</li>
<li>fallback to json default cfg path if yaml does not exist (<a
href="https://redirect.github.com/sigstore/fulcio/issues/1810">#1810</a>)</li>
<li>Include IDP type and subject domain in configuration API response
(<a
href="https://redirect.github.com/sigstore/fulcio/issues/1824">#1824</a>)</li>
</ul>
<h2>Documentation</h2>
<ul>
<li>Update OIDC claim mapping table to reflect the current state (<a
href="https://redirect.github.com/sigstore/fulcio/issues/1801">#1801</a>)</li>
</ul>
<h2>Contributors</h2>
<ul>
<li>Aditya Sirish</li>
<li>Bob Callaway</li>
<li>Carlos Tadeu Panato Junior</li>
<li>Hayden B</li>
<li>Nina</li>
<li>Richard Fan</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/sigstore/fulcio/blob/main/CHANGELOG.md">github.com/sigstore/fulcio's
changelog</a>.</em></p>
<blockquote>
<h1>v1.6.5</h1>
<h2>Features</h2>
<ul>
<li>use go1.23.2 (<a
href="https://redirect.github.com/sigstore/fulcio/issues/1834">#1834</a>)</li>
<li>fallback to json default cfg path if yaml does not exist (<a
href="https://redirect.github.com/sigstore/fulcio/issues/1810">#1810</a>)</li>
<li>Include IDP type and subject domain in configuration API response
(<a
href="https://redirect.github.com/sigstore/fulcio/issues/1824">#1824</a>)</li>
</ul>
<h2>Documentation</h2>
<ul>
<li>Update OIDC claim mapping table to reflect the current state (<a
href="https://redirect.github.com/sigstore/fulcio/issues/1801">#1801</a>)</li>
</ul>
<h2>Contributors</h2>
<ul>
<li>Aditya Sirish</li>
<li>Bob Callaway</li>
<li>Carlos Tadeu Panato Junior</li>
<li>Hayden B</li>
<li>Nina</li>
<li>Richard Fan</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/sigstore/fulcio/commit/7920be28f7f58020c4da8ab9bb78554ad7cd67ea"><code>7920be2</code></a>
Add CHANGELOG for v1.6.5 (<a
href="https://redirect.github.com/sigstore/fulcio/issues/1835">#1835</a>)</li>
<li><a
href="https://github.com/sigstore/fulcio/commit/ab24f1c956158e80fdc6adab2ab35953c9beb2f2"><code>ab24f1c</code></a>
use go1.23.2 (<a
href="https://redirect.github.com/sigstore/fulcio/issues/1834">#1834</a>)</li>
<li><a
href="https://github.com/sigstore/fulcio/commit/8b77b212743f124b1615962b0ceb7090c220fd66"><code>8b77b21</code></a>
Bump chainguard.dev/sdk in the all group across 1 directory (<a
href="https://redirect.github.com/sigstore/fulcio/issues/1833">#1833</a>)</li>
<li><a
href="https://github.com/sigstore/fulcio/commit/50cc9ca774e808f33521cd6bce38dad4ff4a68a8"><code>50cc9ca</code></a>
Bump github.com/prometheus/common from 0.59.1 to 0.60.0 (<a
href="https://redirect.github.com/sigstore/fulcio/issues/1832">#1832</a>)</li>
<li><a
href="https://github.com/sigstore/fulcio/commit/f3c069d80045caa6e85e4881aaa44516bbb5dda0"><code>f3c069d</code></a>
Bump golang from 1.23.1 to 1.23.2 in the all group (<a
href="https://redirect.github.com/sigstore/fulcio/issues/1828">#1828</a>)</li>
<li><a
href="https://github.com/sigstore/fulcio/commit/85bf1df0a582160db589f60f8e5e76d6bcf55181"><code>85bf1df</code></a>
Bump the all group with 4 updates (<a
href="https://redirect.github.com/sigstore/fulcio/issues/1829">#1829</a>)</li>
<li><a
href="https://github.com/sigstore/fulcio/commit/04f761bbe0b40caaf61fedd2044db799d41861be"><code>04f761b</code></a>
Bump github.com/spiffe/go-spiffe/v2 from 2.3.0 to 2.4.0 (<a
href="https://redirect.github.com/sigstore/fulcio/issues/1831">#1831</a>)</li>
<li><a
href="https://github.com/sigstore/fulcio/commit/a2cba3e18d40b2184b1fc03fa10f2106987883ac"><code>a2cba3e</code></a>
fallback to json default cfg path if yaml does not exist (<a
href="https://redirect.github.com/sigstore/fulcio/issues/1810">#1810</a>)</li>
<li><a
href="https://github.com/sigstore/fulcio/commit/c07462d0995528c782b98b620e26e2f0637fcbc4"><code>c07462d</code></a>
extend TLS cert used in tests to 100 year expiration (<a
href="https://redirect.github.com/sigstore/fulcio/issues/1826">#1826</a>)</li>
<li><a
href="https://github.com/sigstore/fulcio/commit/df65c597709975b771ca4118cc1645e42f8532ca"><code>df65c59</code></a>
Include IDP type and subject domain in configuration API response (<a
href="https://redirect.github.com/sigstore/fulcio/issues/1824">#1824</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/sigstore/fulcio/compare/v1.6.4...v1.6.5">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/sigstore/fulcio&package-manager=go_modules&previous-version=1.6.4&new-version=1.6.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

---------

Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Kenny Leung <kleung@chainguard.dev>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Kenny Leung <kleung@chainguard.dev>
  • Loading branch information
@dependabot @k4leung4
dependabot[bot] and k4leung4 authored Oct 25, 2024
1 parent 7fcd395 commit dc5fac2
Show file tree
Hide file tree
Showing 2 changed files with 138 additions and 150 deletions.
88 changes: 44 additions & 44 deletions go.mod
View file
Original file line number Diff line number Diff line change
@@ -1,7 +1,6 @@
module github.com/chainguard-dev/terraform-provider-cosign

go 1.23.1

go 1.23.2
require (
github.com/chainguard-dev/terraform-provider-oci v0.0.17
github.com/cyberphone/json-canonicalization v0.0.0-20231011164504-785e29786b46
Expand All @@ -21,7 +20,7 @@ require (
github.com/hashicorp/terraform-plugin-testing v1.10.0
github.com/secure-systems-lab/go-securesystemslib v0.8.0
github.com/sigstore/cosign/v2 v2.4.1
github.com/sigstore/fulcio v1.6.4
github.com/sigstore/fulcio v1.6.5
github.com/sigstore/policy-controller v0.10.0
github.com/sigstore/rekor v1.3.6
github.com/sigstore/sigstore v1.8.10
Expand All @@ -32,15 +31,16 @@ require (

require (
cloud.google.com/go v0.115.1 // indirect
cloud.google.com/go/auth v0.9.3 // indirect
cloud.google.com/go/auth v0.9.5 // indirect
cloud.google.com/go/auth/oauth2adapt v0.2.4 // indirect
cloud.google.com/go/compute/metadata v0.5.0 // indirect
cloud.google.com/go/iam v1.2.0 // indirect
cloud.google.com/go/kms v1.19.0 // indirect
cloud.google.com/go/longrunning v0.6.0 // indirect
cloud.google.com/go/compute/metadata v0.5.2 // indirect
cloud.google.com/go/iam v1.2.1 // indirect
cloud.google.com/go/kms v1.20.0 // indirect
cloud.google.com/go/longrunning v0.6.1 // indirect
contrib.go.opencensus.io/exporter/ocagent v0.7.1-0.20200907061046-05415f1de66d // indirect
contrib.go.opencensus.io/exporter/prometheus v0.4.2 // indirect
cuelang.org/go v0.9.2 // indirect
dario.cat/mergo v1.0.1 // indirect
github.com/AliyunContainerService/ack-ram-tool/pkg/credentials/provider v0.14.0 // indirect
github.com/Azure/azure-sdk-for-go v68.0.0+incompatible // indirect
github.com/Azure/azure-sdk-for-go/sdk/azcore v1.14.0 // indirect
Expand All @@ -60,8 +60,8 @@ require (
github.com/BurntSushi/toml v1.2.1 // indirect
github.com/Kunde21/markdownfmt/v3 v3.1.0 // indirect
github.com/Masterminds/goutils v1.1.1 // indirect
github.com/Masterminds/semver/v3 v3.2.1 // indirect
github.com/Masterminds/sprig/v3 v3.2.3 // indirect
github.com/Masterminds/semver/v3 v3.3.0 // indirect
github.com/Masterminds/sprig/v3 v3.3.0 // indirect
github.com/OneOfOne/xxhash v1.2.8 // indirect
github.com/ProtonMail/go-crypto v1.1.0-alpha.2 // indirect
github.com/ThalesIgnite/crypto11 v1.2.5 // indirect
Expand All @@ -82,22 +82,22 @@ require (
github.com/armon/go-radix v1.0.0 // indirect
github.com/asaskevich/govalidator v0.0.0-20230301143203-a9d515a09cc2 // indirect
github.com/aws/aws-sdk-go v1.55.5 // indirect
github.com/aws/aws-sdk-go-v2 v1.30.5 // indirect
github.com/aws/aws-sdk-go-v2/config v1.27.33 // indirect
github.com/aws/aws-sdk-go-v2/credentials v1.17.32 // indirect
github.com/aws/aws-sdk-go-v2/feature/ec2/imds v1.16.13 // indirect
github.com/aws/aws-sdk-go-v2/internal/configsources v1.3.17 // indirect
github.com/aws/aws-sdk-go-v2/internal/endpoints/v2 v2.6.17 // indirect
github.com/aws/aws-sdk-go-v2 v1.31.0 // indirect
github.com/aws/aws-sdk-go-v2/config v1.27.37 // indirect
github.com/aws/aws-sdk-go-v2/credentials v1.17.35 // indirect
github.com/aws/aws-sdk-go-v2/feature/ec2/imds v1.16.14 // indirect
github.com/aws/aws-sdk-go-v2/internal/configsources v1.3.18 // indirect
github.com/aws/aws-sdk-go-v2/internal/endpoints/v2 v2.6.18 // indirect
github.com/aws/aws-sdk-go-v2/internal/ini v1.8.1 // indirect
github.com/aws/aws-sdk-go-v2/service/ecr v1.24.7 // indirect
github.com/aws/aws-sdk-go-v2/service/ecrpublic v1.21.6 // indirect
github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding v1.11.4 // indirect
github.com/aws/aws-sdk-go-v2/service/internal/presigned-url v1.11.19 // indirect
github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding v1.11.5 // indirect
github.com/aws/aws-sdk-go-v2/service/internal/presigned-url v1.11.20 // indirect
github.com/aws/aws-sdk-go-v2/service/kms v1.35.7 // indirect
github.com/aws/aws-sdk-go-v2/service/sso v1.22.7 // indirect
github.com/aws/aws-sdk-go-v2/service/ssooidc v1.26.7 // indirect
github.com/aws/aws-sdk-go-v2/service/sts v1.30.7 // indirect
github.com/aws/smithy-go v1.20.4 // indirect
github.com/aws/aws-sdk-go-v2/service/sso v1.23.1 // indirect
github.com/aws/aws-sdk-go-v2/service/ssooidc v1.27.1 // indirect
github.com/aws/aws-sdk-go-v2/service/sts v1.31.1 // indirect
github.com/aws/smithy-go v1.21.0 // indirect
github.com/awslabs/amazon-ecr-credential-helper/ecr-login v0.0.0-20231024185945-8841054dbdb8 // indirect
github.com/benbjohnson/clock v1.3.0 // indirect
github.com/beorn7/perks v1.0.1 // indirect
Expand Down Expand Up @@ -158,7 +158,7 @@ require (
github.com/google/go-querystring v1.1.0 // indirect
github.com/google/gofuzz v1.2.0 // indirect
github.com/google/s2a-go v0.1.8 // indirect
github.com/googleapis/enterprise-certificate-proxy v0.3.3 // indirect
github.com/googleapis/enterprise-certificate-proxy v0.3.4 // indirect
github.com/googleapis/gax-go/v2 v2.13.0 // indirect
github.com/gorilla/mux v1.8.1 // indirect
github.com/grpc-ecosystem/grpc-gateway/v2 v2.22.0 // indirect
Expand Down Expand Up @@ -187,12 +187,12 @@ require (
github.com/hashicorp/terraform-svchost v0.1.1 // indirect
github.com/hashicorp/vault/api v1.14.0 // indirect
github.com/hashicorp/yamux v0.1.1 // indirect
github.com/huandu/xstrings v1.3.3 // indirect
github.com/huandu/xstrings v1.5.0 // indirect
github.com/imdario/mergo v0.3.16 // indirect
github.com/in-toto/in-toto-golang v0.9.0 // indirect
github.com/inconshreveable/mousetrap v1.1.0 // indirect
github.com/jedisct1/go-minisign v0.0.0-20230811132847-661be99b8267 // indirect
github.com/jellydator/ttlcache/v3 v3.2.0 // indirect
github.com/jellydator/ttlcache/v3 v3.3.0 // indirect
github.com/jmespath/go-jmespath v0.4.0 // indirect
github.com/josharian/intern v1.0.0 // indirect
github.com/json-iterator/go v1.1.12 // indirect
Expand Down Expand Up @@ -229,7 +229,7 @@ require (
github.com/posener/complete v1.2.3 // indirect
github.com/prometheus/client_golang v1.20.4 // indirect
github.com/prometheus/client_model v0.6.1 // indirect
github.com/prometheus/common v0.57.0 // indirect
github.com/prometheus/common v0.60.0 // indirect
github.com/prometheus/procfs v0.15.1 // indirect
github.com/prometheus/statsd_exporter v0.22.8 // indirect
github.com/rcrowley/go-metrics v0.0.0-20201227073835-cf1acfcdf475 // indirect
Expand All @@ -240,18 +240,18 @@ require (
github.com/sassoftware/relic v7.2.1+incompatible // indirect
github.com/segmentio/ksuid v1.0.4 // indirect
github.com/shibumi/go-pathspec v1.3.0 // indirect
github.com/shopspring/decimal v1.3.1 // indirect
github.com/shopspring/decimal v1.4.0 // indirect
github.com/sigstore/protobuf-specs v0.3.2 // indirect
github.com/sigstore/sigstore/pkg/signature/kms/aws v1.8.8 // indirect
github.com/sigstore/sigstore/pkg/signature/kms/azure v1.8.8 // indirect
github.com/sigstore/sigstore/pkg/signature/kms/gcp v1.8.8 // indirect
github.com/sigstore/sigstore/pkg/signature/kms/hashivault v1.8.8 // indirect
github.com/sigstore/sigstore/pkg/signature/kms/aws v1.8.9 // indirect
github.com/sigstore/sigstore/pkg/signature/kms/azure v1.8.9 // indirect
github.com/sigstore/sigstore/pkg/signature/kms/gcp v1.8.9 // indirect
github.com/sigstore/sigstore/pkg/signature/kms/hashivault v1.8.9 // indirect
github.com/sigstore/timestamp-authority v1.2.2 // indirect
github.com/sirupsen/logrus v1.9.3 // indirect
github.com/skratchdot/open-golang v0.0.0-20200116055534-eef842397966 // indirect
github.com/sourcegraph/conc v0.3.0 // indirect
github.com/spf13/afero v1.11.0 // indirect
github.com/spf13/cast v1.6.0 // indirect
github.com/spf13/cast v1.7.0 // indirect
github.com/spf13/cobra v1.8.1 // indirect
github.com/spf13/pflag v1.0.5 // indirect
github.com/spf13/viper v1.19.0 // indirect
Expand All @@ -276,32 +276,32 @@ require (
go.abhg.dev/goldmark/frontmatter v0.2.0 // indirect
go.mongodb.org/mongo-driver v1.14.0 // indirect
go.opencensus.io v0.24.0 // indirect
go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.54.0 // indirect
go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.54.0 // indirect
go.opentelemetry.io/otel v1.29.0 // indirect
go.opentelemetry.io/otel/metric v1.29.0 // indirect
go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.55.0 // indirect
go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.55.0 // indirect
go.opentelemetry.io/otel v1.30.0 // indirect
go.opentelemetry.io/otel/metric v1.30.0 // indirect
go.opentelemetry.io/otel/sdk v1.29.0 // indirect
go.opentelemetry.io/otel/trace v1.29.0 // indirect
go.opentelemetry.io/otel/trace v1.30.0 // indirect
go.uber.org/atomic v1.11.0 // indirect
go.uber.org/multierr v1.11.0 // indirect
go.uber.org/zap v1.27.0 // indirect
golang.org/x/crypto v0.28.0 // indirect
golang.org/x/exp v0.0.0-20240613232115-7f521ea00fb8 // indirect
golang.org/x/mod v0.20.0 // indirect
golang.org/x/exp v0.0.0-20240909161429-701f63a606c0 // indirect
golang.org/x/mod v0.21.0 // indirect
golang.org/x/net v0.29.0 // indirect
golang.org/x/sync v0.8.0 // indirect
golang.org/x/sys v0.26.0 // indirect
golang.org/x/term v0.25.0 // indirect
golang.org/x/text v0.19.0 // indirect
golang.org/x/time v0.6.0 // indirect
golang.org/x/tools v0.23.0 // indirect
golang.org/x/tools v0.25.0 // indirect
gomodules.xyz/jsonpatch/v2 v2.4.0 // indirect
google.golang.org/api v0.196.0 // indirect
google.golang.org/api v0.199.0 // indirect
google.golang.org/appengine v1.6.8 // indirect
google.golang.org/genproto v0.0.0-20240903143218-8af14fe29dc1 // indirect
google.golang.org/genproto/googleapis/api v0.0.0-20240827150818-7e3bb234dfed // indirect
google.golang.org/genproto/googleapis/api v0.0.0-20240903143218-8af14fe29dc1 // indirect
google.golang.org/genproto/googleapis/rpc v0.0.0-20240903143218-8af14fe29dc1 // indirect
google.golang.org/grpc v1.67.0 // indirect
google.golang.org/grpc v1.67.1 // indirect
google.golang.org/protobuf v1.34.2 // indirect
gopkg.in/inf.v0 v0.9.1 // indirect
gopkg.in/ini.v1 v1.67.0 // indirect
Expand All @@ -315,7 +315,7 @@ require (
k8s.io/utils v0.0.0-20240502163921-fe8a2dddb1d0 // indirect
knative.dev/pkg v0.0.0-20231101193506-b09d4f2a2845 // indirect
sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd // indirect
sigs.k8s.io/release-utils v0.8.4 // indirect
sigs.k8s.io/release-utils v0.8.5 // indirect
sigs.k8s.io/structured-merge-diff/v4 v4.4.1 // indirect
sigs.k8s.io/yaml v1.4.0 // indirect
)
Loading

0 comments on commit dc5fac2

Please sign in to comment.