Bump github.com/sigstore/sigstore from 1.8.6 to 1.8.7

[dependabot[bot]]

Bumps github.com/sigstore/sigstore from 1.8.6 to 1.8.7.

Release notes

Sourced from github.com/sigstore/sigstore's releases.

v1.8.7

Dependencies updates only

What's Changed

• build(deps): Bump the all group in /pkg/signature/kms/gcp with 2 updates by @​dependabot in sigstore/sigstore#1770
• build(deps): Bump the all group in /pkg/signature/kms/aws with 4 updates by @​dependabot in sigstore/sigstore#1769
• build(deps): Bump hashicorp/vault from 1.17.0 to 1.17.1 in /test/e2e in the all group by @​dependabot in sigstore/sigstore#1767
• build(deps): Bump github.com/sigstore/sigstore from 1.8.4 to 1.8.6 in /test/fuzz in the all group by @​dependabot in sigstore/sigstore#1768
• build(deps): Bump golang.org/x/crypto from 0.24.0 to 0.25.0 in /pkg/signature/kms/azure in the all group by @​dependabot in sigstore/sigstore#1772
• build(deps): Bump the all group across 1 directory with 2 updates by @​dependabot in sigstore/sigstore#1776
• build(deps): Bump actions/upload-artifact from 4.3.3 to 4.3.4 in the all group by @​dependabot in sigstore/sigstore#1771
• build(deps): Bump the all group in /pkg/signature/kms/gcp with 2 updates by @​dependabot in sigstore/sigstore#1773
• build(deps): Bump google.golang.org/grpc from 1.64.0 to 1.64.1 in /pkg/signature/kms/gcp by @​dependabot in sigstore/sigstore#1778
• build(deps): Bump the all group across 1 directory with 4 updates by @​dependabot in sigstore/sigstore#1777

Full Changelog: https://github.com/sigstore/sigstore/compare/v1.8.6...v1.8.7

Commits

• cb8b4bb sync go mod
• 2506e5d build(deps): Bump the all group across 1 directory with 4 updates
• 9a70270 build(deps): Bump google.golang.org/grpc in /pkg/signature/kms/gcp
• f6b4bb5 build(deps): Bump the all group in /pkg/signature/kms/gcp with 2 updates
• aebd23d build(deps): Bump actions/upload-artifact in the all group
• ec4bc1a build(deps): Bump the all group across 1 directory with 2 updates
• aeb9782 build(deps): Bump golang.org/x/crypto
• 016e2e3 build(deps): Bump github.com/sigstore/sigstore
• 8243831 build(deps): Bump hashicorp/vault in /test/e2e in the all group
• 51d791e build(deps): Bump the all group in /pkg/signature/kms/aws with 4 updates
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)