Bump the go group with 24 updates

[dependabot[bot]]

Bumps the go group with 24 updates:

Package	From	To
github.com/aws/aws-sdk-go-v2/config	1.27.4	1.27.6
github.com/aws/aws-sdk-go-v2/credentials	1.17.4	1.17.6
github.com/aws/aws-sdk-go-v2/feature/s3/manager	1.16.6	1.16.8
github.com/aws/aws-sdk-go-v2/service/s3	1.51.1	1.51.3
github.com/containers/image/v5	5.29.2	5.30.0
github.com/cyberphone/json-canonicalization	0.0.0-20231011164504-785e29786b46	0.0.0-20231217050601-ba74d44ecf5f
github.com/docker/cli	24.0.7+incompatible	25.0.3+incompatible
github.com/docker/docker	24.0.7+incompatible	25.0.3+incompatible
github.com/go-openapi/strfmt	0.22.1	0.22.2
github.com/go-openapi/swag	0.22.9	0.22.10
github.com/klauspost/compress	1.17.4	1.17.7
github.com/onsi/ginkgo/v2	2.15.0	2.16.0
github.com/opencontainers/image-spec	1.1.0-rc5	1.1.0
github.com/sigstore/rekor	1.3.4	1.3.5
github.com/sigstore/sigstore	1.8.1	1.8.2
golang.org/x/exp	0.0.0-20240103183307-be819d1f06fc	0.0.0-20240222234643-814bf88cf225
golang.org/x/net	0.20.0	0.22.0
golang.org/x/oauth2	0.16.0	0.18.0
k8s.io/api	0.29.0	0.29.2
k8s.io/apiextensions-apiserver	0.29.0	0.29.2
k8s.io/apimachinery	0.29.0	0.29.2
k8s.io/cli-runtime	0.29.0	0.29.2
k8s.io/client-go	0.29.0	0.29.2
sigs.k8s.io/controller-runtime	0.16.3	0.17.2

Updates github.com/aws/aws-sdk-go-v2/config from 1.27.4 to 1.27.6

Commits

• bd15f86 Release 2024-03-05
• 3bfebf4 Regenerated Clients
• 6875e64 Update API model
• 4d72062 Update bug-report.yml
• be1a076 Update bug-report.yml
• e197198 Update bug-report.yml (#2532)
• a663046 Restore 'AddAsIsPresigingMiddleware' (sic) for backwards compatibility (#2530)
• ec41b9f Release 2024-03-04
• 57954c3 Regenerated Clients
• 91dd60a Update API model
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/credentials from 1.17.4 to 1.17.6

Changelog

Sourced from github.com/aws/aws-sdk-go-v2/credentials's changelog.

Release (2023-03-10)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/aws-sdk-go-v2/service/ivschat: v1.4.0
  • Feature: This release adds a new exception returned when calling AWS IVS chat UpdateLoggingConfiguration. Now UpdateLoggingConfiguration can return ConflictException when invalid updates are made in sequence to Logging Configurations.
• github.com/aws/aws-sdk-go-v2/service/secretsmanager: v1.19.0
  • Feature: The type definitions of SecretString and SecretBinary now have a minimum length of 1 in the model to match the exception thrown when you pass in empty values.

Release (2023-03-09)

Module Highlights

• github.com/aws/aws-sdk-go-v2/service/codeartifact: v1.17.0
  • Feature: This release introduces the generic package format, a mechanism for storing arbitrary binary assets. It also adds a new API, PublishPackageVersion, to allow for publishing generic packages.
• github.com/aws/aws-sdk-go-v2/service/connect: v1.49.0
  • Feature: This release adds a new API, GetMetricDataV2, which returns metric data for Amazon Connect.
• github.com/aws/aws-sdk-go-v2/service/evidently: v1.11.0
  • Feature: Updated entity override documentation
• github.com/aws/aws-sdk-go-v2/service/networkmanager: v1.17.5
  • Documentation: This update provides example usage for TransitGatewayRouteTableArn.
• github.com/aws/aws-sdk-go-v2/service/quicksight: v1.33.0
  • Feature: This release has two changes: add state persistence feature for embedded dashboard and console in GenerateEmbedUrlForRegisteredUser API; add properties for hidden collapsed row dimensions in PivotTableOptions.
• github.com/aws/aws-sdk-go-v2/service/redshiftdata: v1.19.0
  • Feature: Added support for Redshift Serverless workgroup-arn wherever the WorkgroupName parameter is available.
• github.com/aws/aws-sdk-go-v2/service/sagemaker: v1.71.0
  • Feature: Amazon SageMaker Inference now allows SSM access to customer's model container by setting the "EnableSSMAccess" parameter for a ProductionVariant in CreateEndpointConfig API.
• github.com/aws/aws-sdk-go-v2/service/servicediscovery: v1.20.0
  • Feature: Updated all AWS Cloud Map APIs to provide consistent throttling exception (RequestLimitExceeded)
• github.com/aws/aws-sdk-go-v2/service/sesv2: v1.17.0
  • Feature: This release introduces a new recommendation in Virtual Deliverability Manager Advisor, which detects missing or misconfigured Brand Indicator for Message Identification (BIMI) DNS records for customer sending identities.

Release (2023-03-08)

General Highlights

• Dependency Update: Updated to the latest SDK module versions

Module Highlights

• github.com/aws/aws-sdk-go-v2/service/athena: v1.23.0
  • Feature: A new field SubstatementType is added to GetQueryExecution API, so customers have an error free way to detect the query type and interpret the result.
• github.com/aws/aws-sdk-go-v2/service/dynamodb: v1.19.0
  • Feature: Adds deletion protection support to DynamoDB tables. Tables with deletion protection enabled cannot be deleted. Deletion protection is disabled by default, can be enabled via the CreateTable or UpdateTable APIs, and is visible in TableDescription. This setting is not replicated for Global Tables.
• github.com/aws/aws-sdk-go-v2/service/ec2: v1.89.0
  • Feature: Introducing Amazon EC2 C7g, M7g and R7g instances, powered by the latest generation AWS Graviton3 processors and deliver up to 25% better performance over Graviton2-based instances.
• github.com/aws/aws-sdk-go-v2/service/lakeformation: v1.20.0
  • Feature: This release adds two new API support "GetDataCellsFiler" and "UpdateDataCellsFilter", and also updates the corresponding documentation.
• github.com/aws/aws-sdk-go-v2/service/mediapackage: v1.21.0
  • Feature: This release provides the date and time live resources were created.
• github.com/aws/aws-sdk-go-v2/service/mediapackagevod: v1.22.0

... (truncated)

Commits

• 18bff5e Release 2023-03-10
• cca7003 Regenerated Clients
• 87bde6f Update endpoints model
• 361bd48 Update API model
• 61d474d Fix staticcheck linter warnings (#2044)
• 59a58ae Release 2023-03-09
• aa1d8ae Regenerated Clients
• 3441f5f Update endpoints model
• 826cc36 Update API model
• 5799416 Release 2023-03-08
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.16.6 to 1.16.8

Commits

• 205e0e8 Release 2022-08-01
• 99d2053 Regenerated Clients
• ea67b72 Update API model
• cb92592 Fix go1.19 vet failures (#1779)
• 4d902d7 Release 2022-07-29
• 29ae884 Regenerated Clients
• cbad747 Update endpoints model
• 14164db Update API model
• 8df2ee0 Release 2022-07-28
• 965e75f Regenerated Clients
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/service/s3 from 1.51.1 to 1.51.3

Commits

• bd15f86 Release 2024-03-05
• 3bfebf4 Regenerated Clients
• 6875e64 Update API model
• 4d72062 Update bug-report.yml
• be1a076 Update bug-report.yml
• e197198 Update bug-report.yml (#2532)
• a663046 Restore 'AddAsIsPresigingMiddleware' (sic) for backwards compatibility (#2530)
• ec41b9f Release 2024-03-04
• 57954c3 Regenerated Clients
• 91dd60a Update API model
• Additional commits viewable in compare view

Updates github.com/containers/image/v5 from 5.29.2 to 5.30.0

Release notes

Sourced from github.com/containers/image/v5's releases.

v5.30.0

What's Changed

A fair number of improvements when working with zstd and zstd:chunked-compressed images.

Note that make install now installs policy.json and registries.d/default.yaml.

• Refuse compression to zstd when using schema1 by @​mtrmac in containers/image#2196
• Don't expose local account details in oci-archive tar files by @​mtrmac in containers/image#2202
• Trigger a conversion to OCI when compressing to Zstd by @​mtrmac in containers/image#2204
• Add buildtags to avoid fulcio and rekor dependencies by @​siretart in containers/image#2180
• copy: do not fail if digest mismatches by @​giuseppe in containers/image#1980
• Moving policy.json and default.yaml from containers/skopeo by @​rahilarious in containers/image#2215
• Embrace codespell: config, workflow (to alert when new typos added) and get typos fixed by @​yarikoptic in containers/image#2214
• Fix raspberry pi zero cpu variant recognition by @​lstolcman in containers/image#2086
• storage: validate images converted to zstd:chunked by @​giuseppe in containers/image#2243
• Make blob reuse choices manifest-format-sensitive, and allow conversions when writing to format-agnostic transports by @​mtrmac in containers/image#2213
• Edit the manifest when pushing uncompressed data from c/storage by @​mtrmac in containers/image#2273
• Random storage-related cleanups by @​mtrmac in containers/image#2287
• Improve storage transport documentation, primarily about locking by @​mtrmac in containers/image#2291
• Fix c/storage destination with partial pulls by @​mtrmac in containers/image#2288
• Fix manifest updates when we match a layer by TOC digest by @​mtrmac in containers/image#2294
• Cleanly fail when trying to obtain a DiffID of a non-OCI image by @​mtrmac in containers/image#2295
• Beautify TOC-related parts of storageImageSource by @​mtrmac in containers/image#2296
• storage: use the new ApplyStagedLayer interface by @​giuseppe in containers/image#2301
• Also annotate image instances using zstd:chunked as using zstd by @​mtrmac in containers/image#2302
• Support editing ArtifactType, preserve it in lists by @​nalind in containers/image#2304
• Provide data to correctly report throughput on partial pulls by @​mtrmac in containers/image#2308
• Add validation error to digesting reader by @​saschagrunert in containers/image#2312
• Fix handling of errors when fetching layers by URLs by @​mtrmac in containers/image#2310
• Improve handling of zstd vs. zstd:chunked matching by @​mtrmac in containers/image#2317

New Contributors

• @​rahilarious made their first contribution in containers/image#2215
• @​yarikoptic made their first contribution in containers/image#2214
• @​lstolcman made their first contribution in containers/image#2086
• @​bainsy88 made their first contribution in containers/image#2260

Full Changelog: https://github.com/containers/image/compare/v5.29.2...v5.30.0

Commits

• b29bde5 Bump to v5.30.0
• 3cc0bb4 Merge pull request #2328 from containers/renovate/github.com-containers-stora...
• 169d6f5 fix(deps): update module github.com/containers/storage to v1.53.0
• ed96328 Merge pull request #2330 from containers/renovate/golang.org-x-oauth2-0.x
• d097f7f fix(deps): update module golang.org/x/oauth2 to v0.18.0
• 5dbfa1c Merge pull request #2329 from containers/renovate/golang.org-x-crypto-0.x
• 99369af fix(deps): update module golang.org/x/crypto to v0.21.0
• b457769 Merge pull request #2326 from containers/renovate/go-openapi
• 23e4c1d fix(deps): update go-openapi packages
• faa4f4f Merge pull request #2325 from containers/renovate/github.com-stretchr-testify...
• Additional commits viewable in compare view

Updates github.com/cyberphone/json-canonicalization from 0.0.0-20231011164504-785e29786b46 to 0.0.0-20231217050601-ba74d44ecf5f

Commits

• See full diff in compare view

Updates github.com/docker/cli from 24.0.7+incompatible to 25.0.3+incompatible

Commits

• 4debf41 Merge pull request #4857 from thaJeztah/25.0_backport_codecov-action-4
• 5e6ce1b Merge pull request #4856 from thaJeztah/25.0_backport_plugin-socket-tests
• 5428301 build(deps): Bump codecov/codecov-action from 3 to 4
• 1cbc218 tests: add plugin-socket-compatibility tests
• 2f6b5ad scripts: don't hardcode architecture in e2e script
• d8e07c9 tests: add tests for cli-plugins/socket
• 5f1b610 Merge pull request #4841 from thaJeztah/25.0_vendor_docker_25.0.2
• c105cd3 Merge pull request #4837 from dvdksn/25.0_docs_backport_linode_volume_plugin
• 62b2963 vendor: github.com/docker/docker v25.0.2
• 71f2b0d vendor: github.com/docker/docker v25.0.1
• Additional commits viewable in compare view

Updates github.com/docker/docker from 24.0.7+incompatible to 25.0.3+incompatible

Release notes

Sourced from github.com/docker/docker's releases.

v25.0.3

25.0.3

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 25.0.3 milestone
• moby/moby, 25.0.3 milestone

What's Changed

• [25.0 backport] pkg/ioutils: Make subsequent Close attempts noop moby/moby#47222
• [25.0 backport] Fix HasResource inverted boolean error - vendor swarmkit v2.0.0-20240125134710-dcda100a8261 moby/moby#47225
• [25.0 backport] gha: update actions to account for node 16 deprecation moby/moby#47291
• [25.0 backport] docs: remove dead links from api verison history moby/moby#47296
• [25.0 backport] Assert temp output directory is not an empty string moby/moby#47298
• [25.0 backport] api: Document version in /build moby/moby#47295
• [25.0 backport] De-flake TestSwarmClusterRotateUnlockKey moby/moby#47201
• [25.0 backport] Add internal n/w bridge to firewalld docker zone moby/moby#47303
• [25.0 backport] Only restore a configured MAC addr on restart. moby/moby#47304
• [25.0 backport] Revert "daemon: automatically set network EnableIPv6 if needed" moby/moby#47310
• [25.0 backport] libnet: bridge: ignore EINVAL when configuring bridge MTU moby/moby#47311
• [25.0 backport] logger/journald: fix tailing logs with systemd 255 moby/moby#47243
• [25.0 backport] add more //go:build directives to prevent downgrading to go1.16 language moby/moby#47220
• [25.0 backport] libcontainerd/supervisor: fix data race moby/moby#47313
• [25.0 backport] plugins: Fix panic when fetching by digest moby/moby#47323
• [25.0 backport] Dockerfile: update docker-cli to v25.0.2, docker compose v2.24.5 moby/moby#47316
• [25.0 backport] image/save: Fix untagged images not present in index.json moby/moby#47294
• [25.0 backport] Dockerfile: update RootlessKit to v2.0.1 moby/moby#47334
• [25.0 backport] image/cache: Ignore Build and Revision on Windows moby/moby#47337
• [25.0 backport] profiles/seccomp: add syscalls for kernel v5.17 - v6.6, match containerd's profile moby/moby#47344
• [25.0 backport] c8d: Use the same logic to get the present images moby/moby#47348

Full Changelog: https://github.com/moby/moby/compare/v25.0.2...v25.0.3

v25.0.2

25.0.2

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 25.0.2 milestone
• moby/moby, 25.0.2 milestone

Security

This release contains security fixes for the following CVEs affecting Docker Engine and its components.

CVE	Component	Fix version	Severity

... (truncated)

Commits

• f417435 Merge pull request #47348 from rumpl/25.0_backport-history-config
• acd023d c8d: Use the same logic to get the present images
• 7a075ca Merge pull request #47344 from thaJeztah/25.0_backport_seccomp_updates
• aff7177 Merge pull request #47337 from vvoland/cache-fix-older-windows-25
• ed7c263 seccomp: add futex_wake syscall (kernel v6.7, libseccomp v2.5.5)
• 74e3b4f seccomp: add futex_wait syscall (kernel v6.7, libseccomp v2.5.5)
• 4cc0416 seccomp: add futex_requeue syscall (kernel v6.7, libseccomp v2.5.5)
• f9f9e7f seccomp: add map_shadow_stack syscall (kernel v6.6, libseccomp v2.5.5)
• 5fb4eb9 seccomp: add fchmodat2 syscall (kernel v6.6, libseccomp v2.5.5)
• 67e9aa6 seccomp: add cachestat syscall (kernel v6.5, libseccomp v2.5.5)
• Additional commits viewable in compare view

Updates github.com/go-openapi/strfmt from 0.22.1 to 0.22.2

Commits

• be4ecdf updated dependencies
• e949e33 fix(ci): remove dependency-type from dependabot groups
• 5238521 Bump github.com/stretchr/testify from 1.8.4 to 1.9.0
• See full diff in compare view

Updates github.com/go-openapi/swag from 0.22.9 to 0.22.10

Commits

• 5e655d8 fix(ci): remove dependency-type from dependabot groups
• 54f3f80 chore(lint): relinted
• 4896833 Bump github.com/stretchr/testify from 1.8.4 to 1.9.0
• 6b32215 Bump the development-dependencies group with 1 update
• db91acc ci: remove paths-ignores
• fec0b4e Bump the development-dependencies group with 1 update
• 14fcae4 chore(ci): prevents duplicate workflow runs
• d33767c Bump the development-dependencies group with 1 update
• c877230 ci(dependencies): automate dependencies updates
• See full diff in compare view

Updates github.com/klauspost/compress from 1.17.4 to 1.17.7

Release notes

Sourced from github.com/klauspost/compress's releases.

v1.17.7

What's Changed

• s2: Add AsyncFlush method: Complete the block without flushing by @​Jille in klauspost/compress#927
• s2: Fix literal+repeat exceeds dst crash by @​klauspost in klauspost/compress#930

Full Changelog: https://github.com/klauspost/compress/compare/v1.17.6...v1.17.7

v1.17.6

What's Changed

• zstd: Fix incorrect repeat coding in best mode by @​klauspost in klauspost/compress#923
• s2: Fix DecodeConcurrent deadlock on errors by @​klauspost in klauspost/compress#925
• build: Remove garble compiler by @​klauspost in klauspost/compress#924

Full Changelog: https://github.com/klauspost/compress/compare/v1.17.5...v1.17.6

v1.17.5

What's Changed

• flate: Fix reset with dictionary on custom window encodes by @​klauspost in klauspost/compress#912
• zstd: Limit better/best default window to 8MB by @​klauspost in klauspost/compress#913
• zstd: Shorter and faster asm for decSymbol.newState by @​greatroar in klauspost/compress#896
• zstd: Add Frame header encoding and stripping by @​klauspost in klauspost/compress#908
• zstd: Tweak noasm FSE decoder by @​greatroar in klauspost/compress#910
• s2: Fix callbacks for skippable blocks and disallow 0xfe (Padding) for custom use by @​Jille in klauspost/compress#916
• s2: Fix incorrect length encoded by writer.AddSkippableBlock by @​Jille in klauspost/compress#917
• s2: Fix up AddSkippableBlock more by @​klauspost in klauspost/compress#919
• s2: Document and test how to peek the stream for skippable blocks by @​Jille in klauspost/compress#918
• internal/race,s2: add some race instrumentation by @​egonelbre in klauspost/compress#903
• build(deps): bump the github-actions group with 4 updates by @​dependabot in klauspost/compress#900
• CI: Hash pin sensitive actions and configure Dependabot to automatically update them by @​diogoteles08 in klauspost/compress#899
• Update generator and executable go.mod by @​klauspost in klauspost/compress#904
• Update README.md by @​pelenium in klauspost/compress#905
• build(deps): bump the github-actions group with 1 update by @​dependabot in klauspost/compress#906

New Contributors

• @​pelenium made their first contribution in klauspost/compress#905
• @​Jille made their first contribution in klauspost/compress#916

Full Changelog: https://github.com/klauspost/compress/compare/v1.17.4...v1.17.5

Commits

• 1e2b275 tests: Rename fuzz helpers back. (#931)
• 68b7039 s2: Fix literal+repeat exceeds dst (#930)
• 5895eb4 s2: Add AsyncFlush method: Complete the block without flushing (#927)
• 4c49017 ci: Build with Go 1.22.x - deprecate 1.19 (#926)
• 8e5ae40 Update README.md
• 255a132 s2: Fix DecodeConcurrent deadlock on errors (#925)
• e8251aa build: Remove garble compiler (#924)
• 32f34cf build(deps): bump the github-actions group with 1 update (#921)
• aac36dc zstd: Fix incorrect repeat coding in best mode (#923)
• 9b0f130 Update README.md
• Additional commits viewable in compare view

Updates github.com/onsi/ginkgo/v2 from 2.15.0 to 2.16.0

Release notes

Sourced from github.com/onsi/ginkgo/v2's releases.

v2.16.0

2.16.0

Features

• add SpecContext to reporting nodes

Fixes

• merge coverages instead of combining them (#1329) (#1340) [23f0cc5]
• core_dsl: disable Getwd() with environment variable (#1357) [cd418b7]

Maintenance

• docs/index.md: Typo [2cebe8d]
• fix docs [06de431]
• chore: test with Go 1.22 (#1352) [898cba9]
• Bump golang.org/x/tools from 0.16.1 to 0.17.0 (#1336) [17ae120]
• Bump golang.org/x/sys from 0.15.0 to 0.16.0 (#1327) [5a179ed]
• Bump github.com/go-logr/logr from 1.3.0 to 1.4.1 (#1321) [a1e6b69]
• Bump github-pages and jekyll-feed in /docs (#1351) [d52951d]
• Fix docs for handling failures in goroutines (#1339) [4471b2e]

Changelog

Sourced from github.com/onsi/ginkgo/v2's changelog.

2.16.0

Features

• add SpecContext to reporting nodes

Fixes

• merge coverages instead of combining them (#1329) (#1340) [23f0cc5]
• core_dsl: disable Getwd() with environment variable (#1357) [cd418b7]

Maintenance

• docs/index.md: Typo [2cebe8d]
• fix docs [06de431]
• chore: test with Go 1.22 (#1352) [898cba9]
• Bump golang.org/x/tools from 0.16.1 to 0.17.0 (#1336) [17ae120]
• Bump golang.org/x/sys from 0.15.0 to 0.16.0 (#1327) [5a179ed]
• Bump github.com/go-logr/logr from 1.3.0 to 1.4.1 (#1321) [a1e6b69]
• Bump github-pages and jekyll-feed in /docs (#1351) [d52951d]
• Fix docs for handling failures in goroutines (#1339) [4471b2e]

Commits

• a181ee2 v2.16.0
• 2cebe8d docs/index.md: Typo
• 881efde update documentation to reflect changes to reporting nodes
• c4e219f add SpecContext to other reporting nodes and update tests
• 06de431 fix docs
• 372d26a update docs
• fd929c6 update test description
• fed9402 update documentation.
• 5ff9d7f Add SpecContext to ReportAfterSuite callback body.
• 9c771cd Add SpecContext to ReportAfterSuite callback body.
• Additional commits viewable in compare view

Updates github.com/opencontainers/image-spec from 1.1.0-rc5 to 1.1.0

Release notes

Sourced from github.com/opencontainers/image-spec's releases.

v1.1.0

Vote Passed [+7-0] - https://groups.google.com/a/opencontainers.org/g/dev/c/Cnk6H9C4aag Release PR : opencontainers/image-spec#1161 Full Changelog: https://github.com/opencontainers/image-spec/compare/v1.0.2...v1.1.0

Associated Distribution Specification Release - https://github.com/opencontainers/distribution-spec/releases/tag/v1.1.0

v1.1.0-rc6

Vote passed [+6 -0] - https://groups.google.com/a/opencontainers.org/g/dev/c/HOxZlfhr9-o

For changeset and diff please see - opencontainers/image-spec#1157

Commits

• e7f7c0c version: release v1.1.0
• 365fa41 Merge pull request #1160 from sudo-bmitch/pr-subject-dag-association
• d0f90e6 Clarify that subject references a separate DAG
• 9703222 Merge pull request #1157 from sudo-bmitch/pr-v1.1.0-rc6
• 8b1e951 version: bump back to +dev
• 6c2b5fa version: release v1.1.0-rc6
• 56fb783 Merge pull request #1107 from sudo-bmitch/pr-release-notice
• a6d741a Merge pull request #1148 from dejanu/update_oci_implementations
• 53d9855 new section for projects no longer maintained
• ceeb2eb Merge pull request #1114 from sudo-bmitch/pr-go-1.21
• Additional commits viewable in compare view

Updates github.com/sigstore/rekor from 1.3.4 to 1.3.5

Release notes

Sourced from github.com/sigstore/rekor's releases.

v1.3.5

Changelog

• 488eb97 v1.3.5 changelog (#1987)
• 19cd558 output trace in slog and override correlation header name (#1986)
• a0453d5 give log timestamps nanosecond precision (#1985)
• 907f2b5 bump trillian images to v1.6.0 (#1984)
• 134ef83 remove trillian images from release process (#1983)
• 9865ca9 Added support for sha384/sha512 hash algorithms in hashedrekords (#1959)
• fc28ac1 Change Redis value for locking mechanism (#1957)
• fa9ab50 Bump sigstore/sigstore version, fix deprecated func (#1936)
• 6020532 Fix panic for DSSE canonicalization (#1923)
• fe04993 Drop conditional when verifying entry checkpoint (#1917)
• a6c25cc Remove timestamp from checkpoint (#1888)
• 64ab435 Additional unique index correction (#1885)

Thanks for all contributors!

What's Changed

• Additional unique index correction by @​sabre1041 in sigstore/rekor#1885
• Remove timestamp from checkpoint by @​haydentherapper in sigstore/rekor#1888
• Drop conditional when verifying entry checkpoint by @​haydentherapper in sigstore/rekor#1917
• Fix panic for DSSE canonicalization by @​haydentherapper in sigstore/rekor#1923
• update builder to use go1.21 by @​cpanato in sigstore/rekor#1956
• Change Redis value for locking mechanism by @​haydentherapper in sigstore/rekor#1957
• remove trillian images from release process by @​bobcallaway in sigstore/rekor#1983
• bump trillian images to v1.6.0 by @​bobcallaway in sigstore/rekor#1984
• give log timestamps nanosecond precision by @​bobcallaway in sigstore/rekor#1985
• output trace in slog and override correlation header name by @​bobcallaway in sigstore/rekor#1986
• v1.3.5 changelog by @​bobcallaway in sigstore/rekor#1987

New Contributors

• @​ret2libc made their first contribution in sigstore/rekor#1959

Full Changelog: https://github.com/sigstore/rekor/compare/v1.3.4...v1.3.5

Changelog

Sourced from github.com/sigstore/rekor's changelog.

v1.3.5

New Features

• output trace in slog and override correlation header name (#1986)
• give log timestamps nanosecond precision (#1985)
• Added support for sha384/sha512 hash algorithms in hashedrekords (#1959)
• Change Redis value for locking mechanism (#1957)

Bug Fixes

• Fix panic for DSSE canonicalization (#1923)
• Drop conditional when verifying entry checkpoint (#1917)
• Remove timestamp from checkpoint (#1888)
• Additional unique index correction (#1885)

Quality Enhancements

• bump trillian images to v1.6.0 (#1984)
• remove trillian images from release process (#1983)
• update builder to use go1.21

Contributors

• Andrew Block
• Bob Callaway
• Carlos Tadeu Panato Junior
• Hayden Blauzvern
• Riccardo Schirone

Commits

• 488eb97 v1.3.5 changelog (#1987)
• 19cd558 output trace in slog and override correlation header name (#1986)
• a0453d5 give log timestamps nanosecond precision (#1985)
• 907f2b5 bump trillian images to v1.6.0 (#1984)
• 134ef83 remove trillian images from release process (#1983)
• 63aa08f build(deps): Bump google.golang.org/api from 0.157.0 to 0.159.0
• 8ca4eba build(deps): Bump google/cloud-sdk from 460.0.0 to 461.0.0
• 14608f3 build(deps): Bump google.golang.org/grpc from 1.60.1 to 1.61.0
• 2b14bf9 build(deps): Bump golang from 5f5d61d to 76aadd9
• 74311c7 build(deps): Bump cloud.google.com/go/pubsub from 1.34.0 to 1.36.0
• Additional commits viewable in compare view

Updates github.com/sigstore/sigstore from 1.8...

Description has been truncated

[github-actions[bot]]

Mend Scan Summary: :x:

Repository: open-component-model/ocm

VIOLATION DESCRIPTION	NUMBER OF VIOLATIONS
HIGH/CRITICAL SECURITY VULNERABILITIES	0
MAJOR UPDATES AVAILABLE	0
LICENSE REQUIRES REVIEW	2
HIGH RISK LICENSES	9
RESTRICTIED LICENSE FOR ON-PREMISE DELIVERY	0

Detailed Logs: mend-scan-> Generate Report Mend UI

[ocmbot[bot]]

Integration Tests for bfff74046501cfbad981d61762cbc6d5d58857d1 run with result: Success ✅!

[dependabot[bot]]

Looks like these dependencies are updatable in another way, so this is no longer needed.