Update embedded trust root #431
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This is root v12 from Sigstore root-signing (published in https://tuf-repo-cdn.sigstore.dev/): * This is a useful update anyway (since clients now avoid several downloads) * It is also required since v11 turned out to be incompatible with awslabs/tough This should fix sigstore#429 (once released). Signed-off-by: Jussi Kukkonen <[email protected]>
|
Of note is that we failed to add sigstore-rs test into root-signing test matrix at this time: sigstore/root-signing#1433 I've manually tested and |
|
thanks a lot for this fix! |
flavio
approved these changes
Feb 6, 2025
flavio
added a commit
to flavio/sigstore-rs
that referenced
this pull request
Feb 6, 2025
== What's Changed * cosign: Allow use of regex in CertSubjectEmailVerifier by @dave-tucker in sigstore#300 * build(deps): bump rustsec/audit-check from 1.4.1 to 2.0.0 by @dependabot in sigstore#396 * build(deps): bump actions/checkout from 4.1.7 to 4.2.0 by @dependabot in sigstore#397 * build(deps): update rstest requirement from 0.22 to 0.23 by @dependabot in sigstore#399 * build(deps): update testcontainers requirement from 0.22 to 0.23 by @dependabot in sigstore#398 * automation: fix GHA invoking cargo audit by @flavio in sigstore#400 * Cosign | Add support for client to configure a proxy to pull signatures by @Xynnn007 in sigstore#392 * build(deps): bump actions/checkout from 4.2.0 to 4.2.1 by @dependabot in sigstore#401 * CONTRIBUTORS.md: Add note about tests and building by @jku in sigstore#404 * cosign: fix regex dependency import by @Xynnn007 in sigstore#411 * Lint tests too by @jku in sigstore#405 * Simplify cosign verify-bundle example by @jku in sigstore#408 * Examples: Add a minimal example of bundle sign/verify by @jku in sigstore#410 * build(deps): update tough requirement from 0.18 to 0.19 by @dependabot in sigstore#407 * cosign: Make verify-blob compatible with sigstore-python by @jku in sigstore#403 * build(deps): update oci-client requirement from 0.13 to 0.14 by @dependabot in sigstore#418 * build(deps): bump actions/checkout from 4.2.1 to 4.2.2 by @dependabot in sigstore#417 * Deprecate actions-rs actions by @jku in sigstore#415 * build(deps): update cached requirement from 0.53 to 0.54 by @dependabot in sigstore#421 * build(deps): update thiserror requirement from 1.0 to 2.0 by @dependabot in sigstore#420 * build(deps): bump Swatinem/rust-cache from 2.7.5 to 2.7.7 by @dependabot in sigstore#422 * fix clippy complaint by @bobcallaway in sigstore#425 * fix zizmor issues in github actions workflows by @bobcallaway in sigstore#424 * build(deps): update rstest requirement from 0.23 to 0.24 by @dependabot in sigstore#423 * Update embedded trust root by @jku in sigstore#431 * build(deps): update sigstore_protobuf_specs requirement from 0.3 to 0.4 by @dependabot in sigstore#430 * chore(deps): upgrade openidconnect by @flavio in sigstore#433 == New Contributors * @dave-tucker made their first contribution in sigstore#300 * @jku made their first contribution in sigstore#404 **Full Changelog**: sigstore/sigstore-rs@v0.10.0...v0.11.0 Signed-off-by: Flavio Castelli <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This is root v12 from Sigstore root-signing (source https://github.com/sigstore/root-signing, published in https://tuf-repo-cdn.sigstore.dev/):
This should fix #429 (once released).