Commit e3469c5
authored
Bump github.com/sigstore/cosign/v2 from 2.5.3 to 2.6.0 (#1441)
* Bump github.com/sigstore/cosign/v2 from 2.5.3 to 2.6.0
Proposing to bump the cosign version to include new library calls to
push attestations with the referrer's API.
- [Release notes](https://github.com/sigstore/cosign/releases/tag/v2.6.0)
- [Changelog](https://github.com/sigstore/cosign/blob/6431af15a8066c4b33c7232fc2dba3f9278a16a5/CHANGELOG.md)
- [Commits](sigstore/cosign@v2.5.3...v2.6.0)
The new changes desired are sigstore/cosign/pull/4357 which should
better support the work in #1409.
Signed-off-by: arewm <arewm@users.noreply.github.com>
rh-pre-commit.version: 2.3.2
rh-pre-commit.check-secrets: ENABLED
* Fix LoadPrivateKey API breaking change for cosign v2.6.0
- Add LoadOption parameter to LoadPrivateKey calls in x509.go and clients.go
- Pass nil for defaultLoadOptions to use sensible defaults (ED25519ph)
- Update both production code and test code to match new API
The LoadPrivateKey function signature changed in cosign v2.6.0 to
include a third parameter for LoadOption configuration. Passing nil
uses the default ED25519ph behavior which is appropriate for this
use case.
Co-authored-by: Claude Sonnet <claude@anthropic.com>
Signed-off-by: arewm <arewm@users.noreply.github.com>
rh-pre-commit.version: 2.3.2
rh-pre-commit.check-secrets: ENABLED1 parent d767227 commit e3469c5
1,504 files changed
Lines changed: 110528 additions & 48936 deletions
File tree
- pkg/chains/signing/x509
- test
- vendor
- cloud.google.com/go/spanner
- admin/database/apiv1
- databasepb
- apiv1/spannerpb
- internal
- github.com
- Azure
- azure-sdk-for-go/sdk
- azcore
- runtime
- azidentity
- internal/errorinfo
- security/keyvault
- azkeys
- internal
- go-ansiterm
- winterm
- antlr4-go/antlr/v4
- avast/retry-go/v4
- awslabs/amazon-ecr-credential-helper/ecr-login
- api
- config
- aws
- aws-sdk-go-v2
- aws
- retry
- config
- credentials
- feature/ec2/imds
- internal
- configsources
- endpoints
- awsrulesfn
- v2
- service
- ecrpublic
- internal/endpoints
- ecr
- internal/endpoints
- types
- internal
- accept-encoding
- presigned-url
- kms
- ssooidc
- sso
- sts
- aws-sdk-go
- aws
- auth/bearer
- awserr
- awsutil
- client
- metadata
- corehandlers
- credentials
- crr
- csm
- defaults
- ec2metadata
- endpoints
- request
- session
- signer/v4
- service
- dynamodb
- dynamodbattribute
- expression
- ssooidc
- sso
- sts
- smithy-go
- endpoints
- transport/http
- buildkite
- agent/v3
- api
- internal/agenthttp
- version
- go-pipeline
- roko
- cenkalti/backoff/v5
- emicklei/go-restful/v3
- fxamacker/cbor/v2
- globocom/go-buffer
- go-chi/chi
- middleware
- v5
- middleware
- go-jose/go-jose/v3
- cipher
- json
- jwt
- go-openapi
- errors
- swag
- cmdutils
- conv
- fileutils
- jsonname
- jsonutils
- loading
- mangling
- netutils
- stringutils
- typeutils
- yamlutils
- golang-jwt/jwt/v5
- google
- cel-go
- cel
- templates
- common/types/pb
- gnostic-models
- compiler
- jsonschema
- openapiv2
- openapiv3
- mailru/easyjson
- moby/term
- windows
- modern-go/reflect2
- olekukonko
- errors
- ll
- lh
- lx
- tablewriter
- renderer
- tw
- prometheus
- client_golang/prometheus
- internal
- promhttp
- common
- expfmt
- model
- procfs
- internal
- fs
- util
- sigstore
- cosign/v2
- cmd/cosign/cli
- fulcio
- options
- internal
- auth
- pkg/cosign
- ui
- pkg
- cosign
- bundle
- oci/remote
- signature
- types
- rekor-tiles/pkg
- client
- write
- generated/protobuf
- rekor/pkg
- log
- types
- dsse/v0.0.1
- hashedrekord/v0.0.1
- intoto
- v0.0.1
- v0.0.2
- rekord/v0.0.1
- sigstore-go/pkg
- root
- sign
- tlog
- util
- verify
- timestamp-authority/pkg/verification
- spf13
- cobra
- pflag
- stoewer/go-strcase
- stretchr/testify/mock
- transparency-dev
- formats/note
- tessera
- client
- internal
- fetcher
- future
- stream
- witness
- storage
- gcp
- antispam
- internal
- gitlab.com/gitlab-org/api/client-go
- go.opentelemetry.io
- contrib/detectors/gcp
- otel
- attribute
- internal
- baggage
- codes
- internal/global
- metric
- propagation
- sdk
- internal/x
- metric
- exemplar
- internal
- aggregate
- x
- resource
- semconv
- internal/v2
- v1.34.0
- v1.37.0
- trace
- internal/telemetry
- noop
- go.yaml.in/yaml/v3
- golang.org/x
- crypto
- curve25519
- ssh
- knownhosts
- sys
- plan9
- unix
- windows
- registry
- tools
- go
- ast
- astutil
- inspector
- packages
- ssa
- internal
- imports
- modindex
- google.golang.org
- api
- internal
- storage/v1
- protobuf
- internal
- editionssupport
- filedesc
- genid
- version
- types/descriptorpb
- k8s.io
- apimachinery/pkg
- apis/meta
- internalversion/validation
- v1
- validation
- api
- errors
- operation
- safe
- validate
- constraints
- content
- validation
- labels
- runtime
- serializer/cbor
- direct
- internal/modes
- util
- diff
- errors
- managedfields
- internal
- runtime
- validation
- field
- yaml
- api
- admissionregistration/v1beta1
- apps
- v1beta1
- v1beta2
- v1
- authorization/v1
- autoscaling/v1
- batch/v1
- certificates
- v1alpha1
- v1beta1
- v1
- core/v1
- extensions/v1beta1
- networking
- v1alpha1
- v1
- resource
- v1alpha3
- v1beta1
- v1beta2
- v1
- storage
- v1alpha1
- v1beta1
- v1
- client-go
- applyconfigurations
- admissionregistration
- v1alpha1
- v1beta1
- v1
- apiserverinternal/v1alpha1
- apps
- v1beta1
- v1beta2
- v1
- autoscaling
- v1
- v2beta1
- v2beta2
- v2
- batch
- v1beta1
- v1
- certificates
- v1alpha1
- v1beta1
- v1
- coordination
- v1alpha2
- v1beta1
- v1
- core/v1
- discovery
- v1beta1
- v1
- events
- v1beta1
- v1
- extensions/v1beta1
- flowcontrol
- v1beta1
- v1beta2
- v1beta3
- v1
- imagepolicy/v1alpha1
- internal
- meta/v1
- networking
- v1alpha1
- v1beta1
- v1
- node
- v1alpha1
- v1beta1
- v1
- policy
- v1beta1
- v1
- rbac
- v1alpha1
- v1beta1
- v1
- resource
- v1alpha3
- v1beta1
- v1beta2
- v1
- scheduling
- v1alpha1
- v1beta1
- v1
- storagemigration/v1alpha1
- storage
- v1alpha1
- v1beta1
- v1
- dynamic
- features
- gentype
- informers
- admissionregistration/v1beta1
- certificates/v1alpha1
- networking
- v1alpha1
- resource
- v1alpha3
- v1
- storage/v1
- kubernetes
- fake
- scheme
- typed
- admissionregistration/v1beta1
- fake
- certificates/v1alpha1
- fake
- networking/v1alpha1
- fake
- resource
- v1alpha3
- fake
- v1
- fake
- storage/v1
- fake
- listers
- admissionregistration/v1beta1
- certificates/v1alpha1
- networking/v1alpha1
- resource
- v1alpha3
- v1
- storage/v1
- openapi
- pkg/version
- rest
- testing
- tools
- cache
- clientcmd/api
- v1
- leaderelection
- resourcelock
- util
- consistencydetector
- retry
- watchlist
- workqueue
- gengo/v2
- codetags
- kube-openapi/pkg
- common
- schemaconv
- util/proto
- utils/buffer
- sigs.k8s.io
- structured-merge-diff/v6
- fieldpath
- merge
- schema
- typed
- value
- yaml/goyaml.v2
Some content is hidden
Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.
Large diffs are not rendered by default.
Large diffs are not rendered by default.
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
202 | 202 | | |
203 | 203 | | |
204 | 204 | | |
205 | | - | |
| 205 | + | |
206 | 206 | | |
207 | 207 | | |
208 | 208 | | |
| |||
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
237 | 237 | | |
238 | 238 | | |
239 | 239 | | |
240 | | - | |
| 240 | + | |
241 | 241 | | |
242 | 242 | | |
243 | 243 | | |
| |||
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.
Lines changed: 123 additions & 38 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.
0 commit comments