Skip to content

Commit 59d89fe

Browse files
build(deps): bump github.com/sigstore/timestamp-authority/v2 from 2.0.6 to 2.1.0 in /hack/tools/ko (#366)
Bumps [github.com/sigstore/timestamp-authority/v2](https://github.com/sigstore/timestamp-authority) from 2.0.6 to 2.1.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/sigstore/timestamp-authority/releases">github.com/sigstore/timestamp-authority/v2's releases</a>.</em></p> <blockquote> <h2>v2.1.0</h2> <h2>What's Changed</h2> <ul> <li>Bound path and HTTP method metric label cardinality to prevent OOM in <a href="https://redirect.github.com/sigstore/timestamp-authority/pull/1374">sigstore/timestamp-authority#1374</a></li> <li>Fix spec violations in policy, EKU, and hash verification in <a href="https://redirect.github.com/sigstore/timestamp-authority/pull/1375">sigstore/timestamp-authority#1375</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/sigstore/timestamp-authority/compare/v2.0.6...v2.1.0">https://github.com/sigstore/timestamp-authority/compare/v2.0.6...v2.1.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/sigstore/timestamp-authority/commit/58ae149676e193d2dd7e7ee53f231b83fdd10fad"><code>58ae149</code></a> Fix spec violations in policy, EKU, and hash verification (<a href="https://redirect.github.com/sigstore/timestamp-authority/issues/1375">#1375</a>)</li> <li><a href="https://github.com/sigstore/timestamp-authority/commit/506ec57b6ac2ea1e4739322e47453469425b69b5"><code>506ec57</code></a> Bound path and HTTP method metric label cardinality to prevent OOM (<a href="https://redirect.github.com/sigstore/timestamp-authority/issues/1374">#1374</a>)</li> <li><a href="https://github.com/sigstore/timestamp-authority/commit/ee10addd351dc6ee98cce8ff8fd371d7c46da954"><code>ee10add</code></a> chore(deps): bump the actions group with 2 updates (<a href="https://redirect.github.com/sigstore/timestamp-authority/issues/1370">#1370</a>)</li> <li><a href="https://github.com/sigstore/timestamp-authority/commit/5238ec7a129fdb30696877cc72566273b5cda5ed"><code>5238ec7</code></a> chore(deps): bump golang.org/x/net from 0.54.0 to 0.55.0 (<a href="https://redirect.github.com/sigstore/timestamp-authority/issues/1369">#1369</a>)</li> <li><a href="https://github.com/sigstore/timestamp-authority/commit/0ff73b8db18044af0cc8e1ae7e0745fe322377e1"><code>0ff73b8</code></a> chore(deps): bump goreleaser/goreleaser-action in the actions group (<a href="https://redirect.github.com/sigstore/timestamp-authority/issues/1367">#1367</a>)</li> <li><a href="https://github.com/sigstore/timestamp-authority/commit/97813ca20ffde2ee48100f276de8b63a6aabcaf1"><code>97813ca</code></a> chore(deps): bump the actions group with 2 updates (<a href="https://redirect.github.com/sigstore/timestamp-authority/issues/1366">#1366</a>)</li> <li><a href="https://github.com/sigstore/timestamp-authority/commit/ece88f8b7ed97d7018a26e393044de2b8301ab2e"><code>ece88f8</code></a> chore(deps): bump github.com/go-openapi/runtime from 0.30.0 to 0.31.0 (<a href="https://redirect.github.com/sigstore/timestamp-authority/issues/1365">#1365</a>)</li> <li><a href="https://github.com/sigstore/timestamp-authority/commit/77e0ee5cddc2629879814cff1eedce8eae716a0d"><code>77e0ee5</code></a> chore(deps): bump github.com/tink-crypto/tink-go-awskms/v2 to v3 (<a href="https://redirect.github.com/sigstore/timestamp-authority/issues/1364">#1364</a>)</li> <li><a href="https://github.com/sigstore/timestamp-authority/commit/6ea07dfd04b97429be00e98360b819b277398843"><code>6ea07df</code></a> chore(deps): bump go.step.sm/crypto from 0.80.0 to 0.81.0 (<a href="https://redirect.github.com/sigstore/timestamp-authority/issues/1363">#1363</a>)</li> <li><a href="https://github.com/sigstore/timestamp-authority/commit/f1dc03b146f2e1ea2c668a8f5849456e7cf0bc5a"><code>f1dc03b</code></a> chore(deps): bump github.com/tink-crypto/tink-go-hcvault/v2 (<a href="https://redirect.github.com/sigstore/timestamp-authority/issues/1362">#1362</a>)</li> <li>Additional commits viewable in <a href="https://github.com/sigstore/timestamp-authority/compare/v2.0.6...v2.1.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/sigstore/timestamp-authority/v2&package-manager=go_modules&previous-version=2.0.6&new-version=2.1.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/agent-substrate/substrate/network/alerts). </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
1 parent 4f29aaf commit 59d89fe

2 files changed

Lines changed: 90 additions & 93 deletions

File tree

hack/tools/ko/go.mod

Lines changed: 22 additions & 21 deletions
Original file line numberDiff line numberDiff line change
@@ -18,22 +18,22 @@ require (
1818
github.com/BurntSushi/toml v1.6.0 // indirect
1919
github.com/Microsoft/go-winio v0.6.2 // indirect
2020
github.com/asaskevich/govalidator v0.0.0-20230301143203-a9d515a09cc2 // indirect
21-
github.com/aws/aws-sdk-go-v2 v1.41.6 // indirect
22-
github.com/aws/aws-sdk-go-v2/config v1.32.14 // indirect
23-
github.com/aws/aws-sdk-go-v2/credentials v1.19.14 // indirect
24-
github.com/aws/aws-sdk-go-v2/feature/ec2/imds v1.18.21 // indirect
25-
github.com/aws/aws-sdk-go-v2/internal/configsources v1.4.22 // indirect
26-
github.com/aws/aws-sdk-go-v2/internal/endpoints/v2 v2.7.22 // indirect
27-
github.com/aws/aws-sdk-go-v2/internal/ini v1.8.6 // indirect
21+
github.com/aws/aws-sdk-go-v2 v1.41.7 // indirect
22+
github.com/aws/aws-sdk-go-v2/config v1.32.17 // indirect
23+
github.com/aws/aws-sdk-go-v2/credentials v1.19.16 // indirect
24+
github.com/aws/aws-sdk-go-v2/feature/ec2/imds v1.18.23 // indirect
25+
github.com/aws/aws-sdk-go-v2/internal/configsources v1.4.23 // indirect
26+
github.com/aws/aws-sdk-go-v2/internal/endpoints/v2 v2.7.23 // indirect
27+
github.com/aws/aws-sdk-go-v2/internal/v4a v1.4.24 // indirect
2828
github.com/aws/aws-sdk-go-v2/service/ecr v1.56.0 // indirect
2929
github.com/aws/aws-sdk-go-v2/service/ecrpublic v1.38.11 // indirect
30-
github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding v1.13.7 // indirect
31-
github.com/aws/aws-sdk-go-v2/service/internal/presigned-url v1.13.21 // indirect
32-
github.com/aws/aws-sdk-go-v2/service/signin v1.0.9 // indirect
33-
github.com/aws/aws-sdk-go-v2/service/sso v1.30.15 // indirect
34-
github.com/aws/aws-sdk-go-v2/service/ssooidc v1.35.19 // indirect
35-
github.com/aws/aws-sdk-go-v2/service/sts v1.41.10 // indirect
36-
github.com/aws/smithy-go v1.25.0 // indirect
30+
github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding v1.13.9 // indirect
31+
github.com/aws/aws-sdk-go-v2/service/internal/presigned-url v1.13.23 // indirect
32+
github.com/aws/aws-sdk-go-v2/service/signin v1.0.11 // indirect
33+
github.com/aws/aws-sdk-go-v2/service/sso v1.30.17 // indirect
34+
github.com/aws/aws-sdk-go-v2/service/ssooidc v1.35.21 // indirect
35+
github.com/aws/aws-sdk-go-v2/service/sts v1.42.1 // indirect
36+
github.com/aws/smithy-go v1.25.1 // indirect
3737
github.com/awslabs/amazon-ecr-credential-helper/ecr-login v0.12.0 // indirect
3838
github.com/blang/semver v3.5.1+incompatible // indirect
3939
github.com/cenkalti/backoff/v5 v5.0.3 // indirect
@@ -62,10 +62,11 @@ require (
6262
github.com/go-logr/stdr v1.2.2 // indirect
6363
github.com/go-openapi/analysis v0.25.0 // indirect
6464
github.com/go-openapi/errors v0.22.7 // indirect
65-
github.com/go-openapi/jsonpointer v0.22.5 // indirect
65+
github.com/go-openapi/jsonpointer v0.23.1 // indirect
6666
github.com/go-openapi/jsonreference v0.21.5 // indirect
6767
github.com/go-openapi/loads v0.23.3 // indirect
68-
github.com/go-openapi/runtime v0.29.4 // indirect
68+
github.com/go-openapi/runtime v0.31.0 // indirect
69+
github.com/go-openapi/runtime/server-middleware v0.30.0 // indirect
6970
github.com/go-openapi/spec v0.22.4 // indirect
7071
github.com/go-openapi/strfmt v0.26.2 // indirect
7172
github.com/go-openapi/swag v0.26.0 // indirect
@@ -119,7 +120,7 @@ require (
119120
github.com/sigstore/rekor-tiles/v2 v2.2.1 // indirect
120121
github.com/sigstore/sigstore v1.10.6 // indirect
121122
github.com/sigstore/sigstore-go v1.1.4 // indirect
122-
github.com/sigstore/timestamp-authority/v2 v2.0.6 // indirect
123+
github.com/sigstore/timestamp-authority/v2 v2.1.0 // indirect
123124
github.com/sirupsen/logrus v1.9.4 // indirect
124125
github.com/spf13/afero v1.15.0 // indirect
125126
github.com/spf13/cast v1.10.0 // indirect
@@ -142,16 +143,16 @@ require (
142143
go.yaml.in/yaml/v4 v4.0.0-rc.4 // indirect
143144
golang.org/x/crypto v0.51.0 // indirect
144145
golang.org/x/mod v0.36.0 // indirect
145-
golang.org/x/net v0.54.0 // indirect
146+
golang.org/x/net v0.55.0 // indirect
146147
golang.org/x/oauth2 v0.36.0 // indirect
147148
golang.org/x/sync v0.20.0 // indirect
148-
golang.org/x/sys v0.44.0 // indirect
149+
golang.org/x/sys v0.45.0 // indirect
149150
golang.org/x/term v0.43.0 // indirect
150151
golang.org/x/text v0.37.0 // indirect
151152
golang.org/x/tools v0.45.0 // indirect
152153
google.golang.org/genproto/googleapis/api v0.0.0-20260401024825-9d38bb4040a9 // indirect
153-
google.golang.org/genproto/googleapis/rpc v0.0.0-20260401024825-9d38bb4040a9 // indirect
154-
google.golang.org/grpc v1.80.0 // indirect
154+
google.golang.org/genproto/googleapis/rpc v0.0.0-20260427160629-7cedc36a6bc4 // indirect
155+
google.golang.org/grpc v1.81.0 // indirect
155156
google.golang.org/protobuf v1.36.12-0.20260120151049-f2248ac996af // indirect
156157
k8s.io/apimachinery v0.36.1 // indirect
157158
k8s.io/klog/v2 v2.140.0 // indirect

0 commit comments

Comments
 (0)