Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

witness 0.2.0 #157507

Merged
merged 2 commits into from
Dec 16, 2023
Merged

witness 0.2.0 #157507

merged 2 commits into from
Dec 16, 2023

Conversation

Porkepix
Copy link
Contributor

Created by brew bump


Created with brew bump-formula-pr.

release notes
## Changelog

⚠️ Warning ⚠️

go modules have been renamed from github.com/testifysec/witness => github.com/in-toto/witness

Features

  • 0bca96770bb72adea48c06a615b58f9bc2c37f79: feat: add algo hash list for digest calc in config (#292) (@DataDavD)

Bug fixes

  • be20100af602c780deeef50c54f5338662ce917c: fix: dev/Dockerfile.go-builder to reduce vulnerabilities (@snyk-bot)
  • 8e9d7980892d4e0b258f506fd1ae510eea9f213b: fix: dev/Dockerfile.go-builder to reduce vulnerabilities (@snyk-bot)
  • 2219a767ef9acaa957fe75b4555dc72618a3136a: fix: updating urls to in-toto from testifysec and -L to the curl for version (#297) (@lmco-seth)

Documentation

  • edef8082cafc682ea949e4eb672976a0f192b042: docs: Update key to signer-file-key-path in getting starter .witness.yaml (@blhagadorn)
  • 8dde14cb230560cfdef4e39f77dfb3165d78403a: docs: correct sign policy file command in README.md (@shenxianpeng)

Others

  • 27f68b94dbcd6f63a654b92e84256236585e38d7: chore(deps): bump golang.org/x/net from 0.7.0 to 0.17.0 (@dependabot[bot])
  • 602dc485b2b775e6c7cc66b11653a91fdef2aeda: chore(deps): bump google.golang.org/grpc from 1.53.0 to 1.56.3 (@dependabot[bot])
  • 5beb113521c41360027352e681906bb6ae32a168: Add maintainers file (@jkjell)
  • b3d720740e42cb777bf68af2d73a1bbeacf86882: Add dependabot config and add reusable workflow for calling witness (#298) (@jkjell)
  • 21cb944c3d22ee341b84c28e1aa9e8d5a702b73d: chore: bump docker/login-action from 2 to 3 (#299) (@dependabot[bot])
  • 9380cbe5f0480fb41a330fb317e9805e3264d970: chore: bump github/codeql-action from 1.0.26 to 2.22.6 (#300) (@dependabot[bot])
  • 1880baa756f192fb50753744b04906949dfa1201: chore: bump ossf/scorecard-action from 2.1.3 to 2.3.1 (#302) (@dependabot[bot])
  • 873f55c9a7122bad6904c620fcad85a747a23adb: chore: bump golangci/golangci-lint-action from 2 to 3 (#303) (@dependabot[bot])
  • f49ff8e7c8376d2ea61a8ef210ecffd12e807735: chore: bump github.com/sirupsen/logrus from 1.9.0 to 1.9.3 (#304) (@dependabot[bot])
  • 5e56558aef85e0d297bd11659e41fa5273eb7a48: chore: bump github.com/stretchr/testify from 1.8.1 to 1.8.4 (#305) (@dependabot[bot])
  • 932ff1e2da0d5ed04675dc0c67dfbf3c10ca6036: chore: bump actions/checkout from 2 to 4 (#301) (@dependabot[bot])
  • e7a6f44cf2fc12b8adce202fbdd0b941ee287251: chore: bump github/codeql-action from 2.22.6 to 2.22.7 (@dependabot[bot])
  • a412c18c0b88d89b3fb7c9ede7b7f8bf3d4eff68: chore: bump actions/cache from 2 to 3 (@dependabot[bot])
  • 0363ee3b26ddb0c20c7d14e36b64b64d5666ef94: chore: bump actions/setup-go from 2 to 4 (@dependabot[bot])
  • 15bec9efb9d6d772d409e6f09f2cfc43a0a62d1e: chore: bump github.com/go-jose/go-jose/v3 from 3.0.0 to 3.0.1 (@dependabot[bot])
  • 752b9e0488f6687f7dec17b4f540740f8f2af349: chore: bump github/codeql-action from 2.22.7 to 2.22.8 (@dependabot[bot])
  • bcf7ecfb9a5e75966030ecb5eedd882695470179: Update README.md - fixing quickstart url (@clemenko)
  • f65b232d1180a7835d46aa18e77057b1c7192352: [StepSecurity] Apply security best practices (#316) (@step-security-bot)
  • 81bdfceb96602f5a764e77be760469c710342fa1: Improve gha (#318) (@kairoaraujo)
  • a56715e38a3d1b6f47e6bd1545ba73e343b51f3f: Refactoring error messages to use %w formatting directive and fix logging issue (#314) (@ChaosInTheCRD)
  • b19afc804aa110c2bba53d57563deadb9df2f018: Fix initial pre-commit violations (#319) (@jkjell)
  • 862d8c4ce24cd052bb1e16e70dceb2fe08b7f26a: chore: bump actions/upload-artifact from 3.0.0 to 3.1.3 (#320) (@dependabot[bot])
  • a823f5836f4643dc828523f13782b81cdf8d94d3: chore: bump actions/checkout from 3.6.0 to 4.1.1 (#321) (@dependabot[bot])
  • 684fd6a3be19919ea379c2da6dae9f2553586a41: chore: bump actions/setup-go from 4.1.0 to 5.0.0 (#322) (@dependabot[bot])
  • 709ad35dc707570f0098c4be878b8b2202967e9b: chore: bump github/codeql-action from 2.22.8 to 2.22.9 (#323) (@dependabot[bot])
  • 71856fdfca7ed25df60f5126b3e729bb676bcf77: chore: bump actions/dependency-review-action from 2.5.1 to 3.1.4 (#324) (@dependabot[bot])
  • f0c8f437afa9641bef71ef44e1ebe0437010d24e: Adding help to Makefile and updating make test target (#325) (@ChaosInTheCRD)
  • 937eab874bd134e16f80b13fb77e3f45bbd51a74: Adding the contributing.md from archivista (#327) (@ChaosInTheCRD)
  • c0f5843440616ccd645a76a75e83d95cea7c2644: Migrating go module (#328) (@ChaosInTheCRD)
  • c06555dacd185811f6c86eea1b4b3d9031284b99: Migrating to the use of in-toto/go-witness module (#331) (@ChaosInTheCRD)
  • b36c96d911c5b7d5d750604ba9560c42dc73063d: Bumping Go version for goreleaser (#333) (@ChaosInTheCRD)

New Contributors

Full Changelog: in-toto/witness@v0.1.14...v0.2.0

@github-actions github-actions bot added go Go use is a significant feature of the PR or issue bump-formula-pr PR was created using `brew bump-formula-pr` labels Dec 15, 2023
witness: update build

Signed-off-by: Rui Chen <rui@chenrui.dev>
@chenrui333 chenrui333 added the ready to merge PR can be merged once CI is green label Dec 15, 2023
Copy link
Contributor

🤖 An automated task has requested bottles to be published to this PR.

@github-actions github-actions bot added the CI-published-bottle-commits The commits for the built bottles have been pushed to the PR branch. label Dec 16, 2023
@BrewTestBot BrewTestBot added this pull request to the merge queue Dec 16, 2023
Merged via the queue into Homebrew:master with commit 92541b6 Dec 16, 2023
12 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
bump-formula-pr PR was created using `brew bump-formula-pr` CI-published-bottle-commits The commits for the built bottles have been pushed to the PR branch. go Go use is a significant feature of the PR or issue ready to merge PR can be merged once CI is green
Projects
None yet
Development

Successfully merging this pull request may close these issues.

4 participants