From 7067030db96b71b363a888815022ceb2bc2d6f56 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 7 Nov 2023 20:19:08 +0000 Subject: [PATCH] Bump sigstore/cosign-installer from 3.1.2 to 3.2.0 Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 3.1.2 to 3.2.0. - [Release notes](https://github.com/sigstore/cosign-installer/releases) - [Commits](https://github.com/sigstore/cosign-installer/compare/v3.1.2...v3.2.0) --- updated-dependencies: - dependency-name: sigstore/cosign-installer dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- .github/workflows/build.yml | 4 ++-- .github/workflows/trivy.yml | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 9447884..c0e46b8 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -86,7 +86,7 @@ jobs: uses: actions/checkout@v4 - name: Install Cosign - uses: sigstore/cosign-installer@v3.1.2 + uses: sigstore/cosign-installer@v3.2.0 - name: Set up QEMU uses: docker/setup-qemu-action@v3 @@ -137,7 +137,7 @@ jobs: uses: actions/checkout@v4 - name: Install Cosign - uses: sigstore/cosign-installer@v3.1.2 + uses: sigstore/cosign-installer@v3.2.0 - name: Set up QEMU uses: docker/setup-qemu-action@v3 diff --git a/.github/workflows/trivy.yml b/.github/workflows/trivy.yml index 3c0c422..0712398 100644 --- a/.github/workflows/trivy.yml +++ b/.github/workflows/trivy.yml @@ -68,7 +68,7 @@ jobs: echo "BASE_SHA=$(git merge-base --fork-point main)" | tee -a $GITHUB_ENV - name: Install Cosign - uses: sigstore/cosign-installer@v3.1.2 + uses: sigstore/cosign-installer@v3.2.0 - name: Generate docker-compliant image name run: |