mtail icon indicating copy to clipboard operation
mtail copied to clipboard
verified publisher icon google

build(deps): bump sigstore/cosign-installer from 3.7.0 to 3.9.0

Open dependabot[bot] opened this issue 9 months ago • 1 comments

Bumps sigstore/cosign-installer from 3.7.0 to 3.9.0.

Release notes

Sourced from sigstore/cosign-installer's releases.

v3.9.0

What's Changed

Full Changelog: https://github.com/sigstore/cosign-installer/compare/v3...v3.9.0

v3.8.2

What's Changed

Full Changelog: https://github.com/sigstore/cosign-installer/compare/v3...v3.8.2

v3.8.1

What's Changed

Full Changelog: https://github.com/sigstore/cosign-installer/compare/v3...v3.8.1

v3.8.0

What's Changed

Full Changelog: https://github.com/sigstore/cosign-installer/compare/v3...v3.8.0

Commits
  • fb28c2b bump cosign install to use release v2.5.0 as default (#191)
  • e9a05e6 Bump actions/setup-go from 5.4.0 to 5.5.0 (#189)
  • 3454372 install cosign v2 from main (#186)
  • b6ee8f8 Bump actions/setup-go from 5.3.0 to 5.4.0 (#185)
  • d7d6bc7 use cosign 2.4.3 and other updates (#182)
  • c56c2d3 Bump actions/setup-go from 5.2.0 to 5.3.0 (#180)
  • 02e36b8 bump for cosign v2.4.2 release (#181)
  • 789d288 test action against all non-rc releases, verify entry in rekor log (#179)
  • e11c089 Bump actions/setup-go from 5.1.0 to 5.2.0 (#178)
  • 718228a Bump actions/setup-go from 5.0.2 to 5.1.0 (#176)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

dependabot[bot] avatar Jun 17 '25 14:06 dependabot[bot]

Unit Test Results

    1 files     27 suites   9m 2s ⏱️   672 tests   670 ✅ 2 💤 0 ❌ 1 989 runs  1 983 ✅ 6 💤 0 ❌

Results for commit 9e4c7e8b.

github-actions[bot] avatar Jun 17 '25 14:06 github-actions[bot]

Superseded by #969.

dependabot[bot] avatar Jun 24 '25 13:06 dependabot[bot]