sigstore/sigstore v1.2.0 on GitHub

What's Changed

Moved dsse to fuzz dir by @naveensrinivasan in #214
Bump github.com/Azure/azure-sdk-for-go from 60.3.0+incompatible to 61.0.0+incompatible by @dependabot in #215
Fuzz - Fixed the panic that was caused by incorrect data by @naveensrinivasan in #213
Bump github.com/aws/aws-sdk-go from 1.42.25 to 1.42.26 by @dependabot in #216
Bump github.com/aws/aws-sdk-go from 1.42.26 to 1.42.27 by @dependabot in #217
Bump github.com/aws/aws-sdk-go from 1.42.27 to 1.42.28 by @dependabot in #219
Bump github.com/Azure/azure-sdk-for-go from 61.0.0+incompatible to 61.1.0+incompatible by @dependabot in #218
Bump github.com/aws/aws-sdk-go from 1.42.28 to 1.42.29 by @dependabot in #220
Bump github.com/aws/aws-sdk-go from 1.42.29 to 1.42.31 by @dependabot in #222
pin actions by digest; update chrome install to use signed repo by @bobcallaway in #225
Bump github.com/aws/aws-sdk-go from 1.42.31 to 1.42.32 by @dependabot in #224
Bump github.com/aws/aws-sdk-go from 1.42.32 to 1.42.33 by @dependabot in #227
Bump github/codeql-action from 300c8b6dcbaf905eb250b06113e2e62c340a2d20 to 1.0.27 by @dependabot in #226
Fix: verify with HashiVault KMS by @blz-ea in #229
Bump github.com/aws/aws-sdk-go from 1.42.33 to 1.42.34 by @dependabot in #230
Bump github.com/Azure/azure-sdk-for-go from 61.1.0+incompatible to 61.2.0+incompatible by @dependabot in #231
KMS: Change how the Azure authentication method is handled by @simongottschlag in #228
Bump github.com/aws/aws-sdk-go from 1.42.34 to 1.42.35 by @dependabot in #232
Bump github.com/Azure/go-autorest/autorest from 0.11.22 to 0.11.24 by @dependabot in #233
Drop SHA1, SHA224 for RSA-PSS/PKCS#1, enforce for RSA-PKCS#1 by @haydentherapper in #234
Bump github/codeql-action from 1.0.27 to 1.0.28 by @dependabot in #236
Bump github.com/aws/aws-sdk-go from 1.42.35 to 1.42.36 by @dependabot in #235
Bump github.com/google/go-cmp from 0.5.6 to 0.5.7 by @dependabot in #237
Bump github.com/aws/aws-sdk-go from 1.42.36 to 1.42.37 by @dependabot in #238
Bump github.com/Azure/azure-sdk-for-go from 61.2.0+incompatible to 61.3.0+incompatible by @dependabot in #239
Fix minor typos for HashiCorp by @jbayer in #240
Bump github.com/aws/aws-sdk-go from 1.42.37 to 1.42.38 by @dependabot in #242
Bump github/codeql-action from 1.0.28 to 1.0.29 by @dependabot in #241
Add subject key ID calculation from public key by @haydentherapper in #243
Bump github.com/aws/aws-sdk-go from 1.42.38 to 1.42.39 by @dependabot in #245
Bump github/codeql-action from 1.0.29 to 1.0.30 by @dependabot in #244
Bump github.com/aws/aws-sdk-go from 1.42.39 to 1.42.40 by @dependabot in #248
Wire up html page passed in for interactive OIDC callback server by @n3wscott in #247
Bump github.com/aws/aws-sdk-go from 1.42.40 to 1.42.41 by @dependabot in #250
Bump github.com/aws/aws-sdk-go from 1.42.41 to 1.42.42 by @dependabot in #251
Bump github.com/aws/aws-sdk-go from 1.42.42 to 1.42.43 by @dependabot in #252
Add oidc login to vault by @sudo-bmitch in #249
Bump github/codeql-action from 1.0.30 to 1.0.31 by @dependabot in #253
Bump github.com/aws/aws-sdk-go from 1.42.43 to 1.42.44 by @dependabot in #254
Bump github.com/Azure/azure-sdk-for-go from 61.3.0+incompatible to 61.4.0+incompatible by @dependabot in #255
Skip strict check on PKCE discovery claim on Azure by @bobcallaway in #246
Add ability to specify key version for Hashivault by @bobcallaway in #256
update deps by @dekkagaijin in #257
Bump github.com/aws/aws-sdk-go from 1.42.45 to 1.42.46 by @dependabot in #258
Bump cloud.google.com/go/kms from 1.1.0 to 1.2.0 by @dependabot in #259
return version of Vault key via functional option by @bobcallaway in #260
Bump github/codeql-action from 1.0.31 to 1.0.32 by @dependabot in #261
Bump github.com/aws/aws-sdk-go from 1.42.46 to 1.42.47 by @dependabot in #262
Bump github.com/aws/aws-sdk-go from 1.42.47 to 1.42.48 by @dependabot in #264
Bump github.com/go-rod/rod from 0.101.8 to 0.102.0 by @dependabot in #265
Bump github.com/aws/aws-sdk-go from 1.42.48 to 1.42.49 by @dependabot in #267
Bump actions/setup-go from 2.1.5 to 2.2.0 by @dependabot in #266
Bump github.com/aws/aws-sdk-go from 1.42.49 to 1.42.50 by @dependabot in #268
Bump github.com/go-rod/rod from 0.102.0 to 0.102.1 by @dependabot in #271
Bump github.com/aws/aws-sdk-go from 1.42.50 to 1.42.51 by @dependabot in #270
Bump github/codeql-action from 1.0.32 to 1.1.0 by @dependabot in #269
Bump github.com/aws/aws-sdk-go from 1.42.51 to 1.42.52 by @dependabot in #272
Bump github.com/Azure/azure-sdk-for-go from 61.4.0+incompatible to 61.5.0+incompatible by @dependabot in #273
Bump cloud.google.com/go/kms from 1.2.0 to 1.3.0 by @dependabot in #274
Bump github.com/aws/aws-sdk-go from 1.42.52 to 1.42.53 by @dependabot in #275
Bump github.com/aws/aws-sdk-go from 1.42.53 to 1.43.0 by @dependabot in #281
Bump github/codeql-action from 1.1.0 to 1.1.2 by @dependabot in #280
pkg/signature/kms doesn't depend on kms impls by @imjasonh in #276
remove unmaintained test dependency with invalid license by @bobcallaway in #279
move e2e tests inline with various implementation packages by @bobcallaway in #282
feat(kms): add supported providers func by @Dentrax in #277
Bump github.com/aws/aws-sdk-go from 1.43.0 to 1.43.1 by @dependabot in #283
Bump github.com/Azure/azure-sdk-for-go from 61.5.0+incompatible to 61.6.0+incompatible by @dependabot in #284
Bump github.com/aws/aws-sdk-go from 1.43.1 to 1.43.2 by @dependabot in #285
Bump github.com/aws/aws-sdk-go from 1.43.2 to 1.43.3 by @dependabot in #286
Bump github.com/aws/aws-sdk-go from 1.43.3 to 1.43.4 by @dependabot in #287
Permit usage of signing keys with aws-us-gov arn partitions by @chaospuppy in #289
Bump github/codeql-action from 1.1.2 to 1.1.3 by @dependabot in #291
Bump github.com/aws/aws-sdk-go from 1.43.4 to 1.43.5 by @dependabot in #292
update permissions for codeql by @bobcallaway in #293
Bump github.com/aws/aws-sdk-go from 1.43.5 to 1.43.6 by @dependabot in #295
Bump golangci/golangci-lint-action from 2.5.2 to 3 by @dependabot in #294
Bump hashicorp vault to 1.4.0. by @dlorenc in #297
Bump github.com/hashicorp/vault/api from 1.4.0 to 1.4.1 by @dependabot in #298
Explicitly run the go setup action. by @dlorenc in #299
Bump github.com/secure-systems-lab/go-securesystemslib from 0.3.0 to 0.3.1 by @dependabot in #304
Bump golangci/golangci-lint-action from 3.0.0 to 3.1.0 by @dependabot in #300
Bump actions/setup-go from 2.2.0 to 3 by @dependabot in #301
Bump github.com/aws/aws-sdk-go from 1.43.6 to 1.43.7 by @dependabot in #302
Bump github.com/Azure/azure-sdk-for-go from 61.6.0+incompatible to 62.0.0+incompatible by @dependabot in #303
Bump github.com/aws/aws-sdk-go from 1.43.7 to 1.43.8 by @dependabot in #307
Bump actions/checkout from 2.4.0 to 3 by @dependabot in #306
Bump github.com/aws/aws-sdk-go from 1.43.8 to 1.43.9 by @dependabot in #309
Bump actions/upload-artifact from 2.3.1 to 3 by @dependabot in #310
Bump cloud.google.com/go/kms from 1.3.0 to 1.4.0 by @dependabot in #311
Bump github.com/aws/aws-sdk-go from 1.43.9 to 1.43.10 by @dependabot in #312
Bump github.com/go-rod/rod from 0.102.1 to 0.103.0 by @dependabot in #313
Bump github.com/aws/aws-sdk-go from 1.43.10 to 1.43.11 by @dependabot in #314
Bump github.com/aws/aws-sdk-go from 1.43.11 to 1.43.12 by @dependabot in #316
Bump github.com/Azure/azure-sdk-for-go from 62.0.0+incompatible to 62.1.0+incompatible by @dependabot in #317
Bump github.com/aws/aws-sdk-go from 1.43.12 to 1.43.13 by @dependabot in #319
Bump github/codeql-action from 1.1.3 to 1.1.4 by @dependabot in #318
Bump github.com/aws/aws-sdk-go from 1.43.13 to 1.43.14 by @dependabot in #321
Enable the same golangci-lint rules as cosign by @dekkagaijin in #322
Bump github.com/aws/aws-sdk-go from 1.43.14 to 1.43.15 by @dependabot in #323
Initial introduction and implementation of oidc.IDTokenSource by @dekkagaijin in #320
Update CODEOWNERS by @endorama in #315
Bump github.com/aws/aws-sdk-go from 1.43.15 to 1.43.16 by @dependabot in #324
Add a reusuable GitHub Action workflow for cutting releases. by @k4leung4 in #325
return immediately, without waiting for the operation in progress to complete by @cpanato in #326
Bump github.com/aws/aws-sdk-go from 1.43.16 to 1.43.17 by @dependabot in #327
Bump github.com/Azure/azure-sdk-for-go from 62.1.0+incompatible to 62.2.0+incompatible by @dependabot in #328
Bump github.com/aws/aws-sdk-go from 1.43.17 to 1.43.18 by @dependabot in #329
Bump github.com/stretchr/testify from 1.7.0 to 1.7.1 by @dependabot in #332
Included OpenSSF Best Practices badge by @naveensrinivasan in #333
Bump github.com/aws/aws-sdk-go from 1.43.18 to 1.43.19 by @dependabot in #331
fix lints found by golangci-lint by @cpanato in #334
Bump github.com/aws/aws-sdk-go from 1.43.19 to 1.43.20 by @dependabot in #335
Bump github.com/aws/aws-sdk-go from 1.43.20 to 1.43.21 by @dependabot in #336
Bump github/codeql-action from 1.1.4 to 1.1.5 by @dependabot in #330
Make tag,key_ring,key optional for release workflow. by @k4leung4 in #338
Bump github.com/go-rod/rod from 0.103.0 to 0.104.1 by @dependabot in #341
Bump github.com/Azure/azure-sdk-for-go from 62.2.0+incompatible to 62.3.0+incompatible by @dependabot in #342
Bump github.com/aws/aws-sdk-go from 1.43.21 to 1.43.22 by @dependabot in #340
Bump actions/cache from 2.1.7 to 3 by @dependabot in #339
Bump google.golang.org/protobuf from 1.27.1 to 1.28.0 by @dependabot in #343
Bump github.com/aws/aws-sdk-go from 1.43.22 to 1.43.24 by @dependabot in #345
Add utilities to parse Oauth2 access token HTTP responses by @dekkagaijin in #337
Add method to check for public key equality by @haydentherapper in #346

New Contributors

@blz-ea made their first contribution in #229
@simongottschlag made their first contribution in #228
@haydentherapper made their first contribution in #234
@jbayer made their first contribution in #240
@n3wscott made their first contribution in #247
@sudo-bmitch made their first contribution in #249
@imjasonh made their first contribution in #276
@Dentrax made their first contribution in #277
@chaospuppy made their first contribution in #289
@endorama made their first contribution in #315
@k4leung4 made their first contribution in #325

Full Changelog: v1.1.0...v1.2.0