policy-controller
policy-controller copied to clipboard
sigstore
chore(deps): Bump github.com/sigstore/scaffolding from 0.7.9 to 0.7.11
Bumps github.com/sigstore/scaffolding from 0.7.9 to 0.7.11.
Release notes
Sourced from github.com/sigstore/scaffolding's releases.
v0.7.11
What's Changed
- fix release workflow to checkout first by
@bobcallawayin sigstore/scaffolding#1283Full Changelog: https://github.com/sigstore/scaffolding/compare/v0.7.10...v0.7.11
v0.7.10
FYI
This release failed due to an issue in the release script. Please use the 0.7.11 release.
What's Changed
Go to 1.23.1 and:
- terraform: read mysql pwd from gcp SM instead of TF random variable by
@bobcallawayin sigstore/scaffolding#1263- Bump the terraform group across 27 directories with 2 updates by
@dependabotin sigstore/scaffolding#1248- Bump github/codeql-action from 3.26.6 to 3.26.7 by
@dependabotin sigstore/scaffolding#1264- Bump github.com/sigstore/sigstore-go from 0.6.1 to 0.6.2 by
@dependabotin sigstore/scaffolding#1268- Bump k8s.io/client-go from 0.31.0 to 0.31.1 by
@dependabotin sigstore/scaffolding#1272- Bump google.golang.org/grpc from 1.66.0 to 1.66.2 by
@dependabotin sigstore/scaffolding#1267- Bump k8s.io/code-generator from 0.31.0 to 0.31.1 by
@dependabotin sigstore/scaffolding#1269- Revert "Bump the terraform group across 27 directories with 2 updates" by
@bobcallawayin sigstore/scaffolding#1273- remove secret_version from being TF managed by
@bobcallawayin sigstore/scaffolding#1274- Bump github/codeql-action from 3.26.7 to 3.26.8 by
@dependabotin sigstore/scaffolding#1275- Bump github.com/prometheus/client_golang from 1.20.3 to 1.20.4 by
@dependabotin sigstore/scaffolding#1277- Bump google.golang.org/grpc from 1.66.2 to 1.67.0 by
@dependabotin sigstore/scaffolding#1276- Bump trillian-opensource-ci/db_server from
c5195ffto6f9942din /config/trillian/mysql by@dependabotin sigstore/scaffolding#1279- bump terraform to 1.9.6 and 6.3.0 by
@bobcallawayin sigstore/scaffolding#1281- bump cloud-sql-proxy in ko by
@bobcallawayin sigstore/scaffolding#1282- update vendor by
@k4leung4in sigstore/scaffolding#1278- Bump sigs.k8s.io/release-utils from 0.8.4 to 0.8.5 by
@dependabotin sigstore/scaffolding#1266Full Changelog: https://github.com/sigstore/scaffolding/compare/v0.7.9...v0.7.10
Commits
3c79cb2fix release workflow to checkout first (#1283)31ebb3bBump sigs.k8s.io/release-utils from 0.8.4 to 0.8.5 (#1266)b3f1b78update go to 1.23.1 (#1278)e0b643bbump cloud-sql-proxy in ko (#1282)afe38c0bump terraform to 1.9.6 and 6.3.0 (#1281)16d108bBump trillian-opensource-ci/db_server in /config/trillian/mysql (#1279)854400cBump google.golang.org/grpc from 1.66.2 to 1.67.0 (#1276)82d2284Bump github.com/prometheus/client_golang from 1.20.3 to 1.20.4 (#1277)efa1a6cBump github/codeql-action from 3.26.7 to 3.26.8 (#1275)08423a9remove secret_version from being TF managed (#1274)- Additional commits viewable in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "Published by a pub.dev verified publisher"){kind=small}
