gh-trusted-builds-attestations icon indicating copy to clipboard operation
gh-trusted-builds-attestations copied to clipboard

Published 20 hours ago verified publisher icon liatrio

build: update module github.com/sigstore/rekor to v1.3.7

Open renovate[bot] opened this issue 1 year ago • 1 comments

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
github.com/sigstore/rekor v1.3.5 -> v1.3.7 age adoption passing confidence

Release Notes

sigstore/rekor (github.com/sigstore/rekor)

v1.3.7

Compare Source

New Features

  • log request body on 500 error to aid debugging (#​2283)
  • Add support for signing with Tink keyset (#​2228)
  • Add public key hash check in Signed Note verification (#​2214)
  • update Trillian TLS configuration (#​2202)
  • Add TLS support for Trillian server (#​2164)
  • Replace docker-compose with plugin if available (#​2153)
  • Add flags to backfill script (#​2146)
  • Unset DisableKeepalive for backfill HTTP client (#​2137)
  • Add script to delete indexes from Redis (#​2120)
  • Run CREATE statement in backfill script (#​2109)
  • Add MySQL support to backfill script (#​2081)
  • Run e2e tests on mysql and redis index backends (#​2079)

Bug Fixes

  • remove unneeded value in log message (#​2282)
  • Add error message when computing consistency proof (#​2278)
  • fix validation error handling on API (#​2217)
  • fix error in pretty-printed inclusion proof from verify subcommand (#​2210)
  • Fix index scripts (#​2203)
  • fix failing sharding test
  • Better error handling in backfill script (#​2148)
  • Batch entries in cleanup script (#​2158)
  • Add missing workflow for index cleanup test (#​2121)
  • hashedrekord: fix schema $id (#​2092)

Contributors

  • Aditya Sirish
  • Bob Callaway
  • Colleen Murphy
  • cpanato
  • Firas Ghanmi
  • Hayden B
  • Hojoung (Brian) Jang
  • William Woodruff

v1.3.6

Compare Source

New Features

  • Add support for IEEE P1363 encoded ECDSA signatures
  • Add index performance script (#​2042)
  • Add support for ed25519ph user keys in hashedrekord (#​1945)
  • Add metrics for index insertion (#​2015)
  • Add TLS support for Redis Client implementation (#​1998)

Bug Fixes

  • fix typo in remoteIp and set full name for trace field

Contributors

  • Bob Callaway
  • Colleen Murphy
  • cpanato
  • Hayden B
  • Mihkel Pärna
  • Riccardo Schirone

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • [ ] If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

renovate[bot] avatar Apr 02 '24 07:04 renovate[bot]

ℹ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

  • 72 additional dependencies were updated
  • The go directive was updated for compatibility reasons

Details:

Package Change
go 1.22.1 -> 1.23.3
github.com/google/go-containerregistry v0.19.0 -> v0.20.2
github.com/sigstore/sigstore v1.8.2 -> v1.8.10
github.com/spf13/cobra v1.8.0 -> v1.8.1
golang.org/x/oauth2 v0.18.0 -> v0.24.0
google.golang.org/protobuf v1.33.0 -> v1.35.2
cloud.google.com/go/compute/metadata v0.2.3 -> v0.5.2
dario.cat/mergo v1.0.0 -> v1.0.1
github.com/aws/aws-sdk-go-v2 v1.24.1 -> v1.32.4
github.com/aws/aws-sdk-go-v2/config v1.26.6 -> v1.28.3
github.com/aws/aws-sdk-go-v2/credentials v1.16.16 -> v1.17.44
github.com/aws/aws-sdk-go-v2/feature/ec2/imds v1.14.11 -> v1.16.19
github.com/aws/aws-sdk-go-v2/internal/configsources v1.2.10 -> v1.3.23
github.com/aws/aws-sdk-go-v2/internal/endpoints/v2 v2.5.10 -> v2.6.23
github.com/aws/aws-sdk-go-v2/internal/ini v1.7.3 -> v1.8.1
github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding v1.10.4 -> v1.12.0
github.com/aws/aws-sdk-go-v2/service/internal/presigned-url v1.10.10 -> v1.12.4
github.com/aws/aws-sdk-go-v2/service/sso v1.18.7 -> v1.24.5
github.com/aws/aws-sdk-go-v2/service/ssooidc v1.21.7 -> v1.28.4
github.com/aws/aws-sdk-go-v2/service/sts v1.26.7 -> v1.32.4
github.com/aws/smithy-go v1.19.0 -> v1.22.0
github.com/cespare/xxhash/v2 v2.2.0 -> v2.3.0
github.com/coreos/go-oidc/v3 v3.9.0 -> v3.11.0
github.com/docker/cli v24.0.7+incompatible -> v27.1.1+incompatible
github.com/go-jose/go-jose/v3 v3.0.2 -> v3.0.3
github.com/go-logr/logr v1.4.1 -> v1.4.2
github.com/go-openapi/analysis v0.22.0 -> v0.23.0
github.com/go-openapi/errors v0.21.0 -> v0.22.0
github.com/go-openapi/jsonpointer v0.20.2 -> v0.21.0
github.com/go-openapi/jsonreference v0.20.4 -> v0.21.0
github.com/go-openapi/loads v0.21.5 -> v0.22.0
github.com/go-openapi/runtime v0.27.1 -> v0.28.0
github.com/go-openapi/spec v0.20.14 -> v0.21.0
github.com/go-openapi/strfmt v0.22.0 -> v0.23.0
github.com/go-openapi/swag v0.22.9 -> v0.23.0
github.com/go-openapi/validate v0.22.6 -> v0.24.0
github.com/golang/protobuf v1.5.3 -> v1.5.4
github.com/google/s2a-go v0.1.7 -> v0.1.8
github.com/googleapis/enterprise-certificate-proxy v0.3.2 -> v0.3.4
github.com/hashicorp/go-retryablehttp v0.7.5 -> v0.7.7
github.com/jmespath/go-jmespath v0.4.0 -> v0.4.1-0.20220621161143-b0104c826a24
github.com/klauspost/compress v1.17.2 -> v1.17.9
github.com/letsencrypt/boulder v0.0.0-20231026200631-000cd05d5491 -> v0.0.0-20240620165639-de9c06129bec
github.com/pelletier/go-toml/v2 v2.1.0 -> v2.2.2
github.com/prometheus/client_golang v1.19.0 -> v1.20.5
github.com/prometheus/client_model v0.5.0 -> v0.6.1
github.com/prometheus/common v0.48.0 -> v0.55.0
github.com/prometheus/procfs v0.12.0 -> v0.15.1
github.com/spf13/cast v1.6.0 -> v1.7.0
github.com/spf13/viper v1.18.2 -> v1.19.0
go.mongodb.org/mongo-driver v1.13.1 -> v1.14.0
go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.47.0 -> v0.54.0
go.opentelemetry.io/otel v1.22.0 -> v1.29.0
go.opentelemetry.io/otel/metric v1.22.0 -> v1.29.0
go.opentelemetry.io/otel/sdk v1.22.0 -> v1.27.0
go.opentelemetry.io/otel/trace v1.22.0 -> v1.29.0
go.step.sm/crypto v0.42.1 -> v0.54.2
go.uber.org/zap v1.26.0 -> v1.27.0
golang.org/x/crypto v0.21.0 -> v0.29.0
golang.org/x/exp v0.0.0-20231108232855-2478ac86f678 -> v0.0.0-20240325151524-a685a6edb6d8
golang.org/x/mod v0.14.0 -> v0.22.0
golang.org/x/net v0.22.0 -> v0.31.0
golang.org/x/sync v0.6.0 -> v0.9.0
golang.org/x/sys v0.18.0 -> v0.27.0
golang.org/x/term v0.18.0 -> v0.26.0
golang.org/x/text v0.14.0 -> v0.20.0
golang.org/x/time v0.5.0 -> v0.8.0
golang.org/x/tools v0.15.0 -> v0.21.1-0.20240508182429-e35e4ccd0d2d
google.golang.org/api v0.159.0 -> v0.206.0
google.golang.org/genproto/googleapis/rpc v0.0.0-20240123012728-ef4313101c80 -> v0.0.0-20241104194629-dd2ea8efbc28
k8s.io/klog/v2 v2.120.0 -> v2.130.1
k8s.io/utils v0.0.0-20230726121419-3b25d923346b -> v0.0.0-20240502163921-fe8a2dddb1d0
sigs.k8s.io/release-utils v0.7.7 -> v0.8.5

renovate[bot] avatar Nov 22 '24 00:11 renovate[bot]