Sourced from sigstore/scaffolding's releases.

v0.7.7

What's Changed

• go mod tidy by @​bobcallaway in sigstore/scaffolding#1237

Full Changelog: sigstore/scaffolding@v0.7.6...v0.7.7

v0.7.6

Note, this release missed a go mod tidy so you should skip and move to v0.7.7

What's Changed

• Bump docker/login-action from 3.2.0 to 3.3.0 by @​dependabot in sigstore/scaffolding#1197
• Bump github/codeql-action from 3.25.13 to 3.25.15 by @​dependabot in sigstore/scaffolding#1196
• Bump sigs.k8s.io/release-utils from 0.8.3 to 0.8.4 by @​dependabot in sigstore/scaffolding#1194
• Bump github.com/docker/docker from 24.0.9+incompatible to 26.1.4+incompatible by @​dependabot in sigstore/scaffolding#1198
• Bump hashicorp/google from 5.38.0 to 5.39.1 in /terraform/gcp/modules/external_secrets in the terraform group by @​dependabot in sigstore/scaffolding#1201
• Bump golang.org/x/time from 0.5.0 to 0.6.0 by @​dependabot in sigstore/scaffolding#1203
• Bump golangci/golangci-lint-action from 6.0.1 to 6.1.0 by @​dependabot in sigstore/scaffolding#1202
• export bastion SA email address as tf output from sigstore module by @​bobcallaway in sigstore/scaffolding#1204
• Bump github.com/sigstore/cosign/v2 from 2.2.4 to 2.3.0 by @​dependabot in sigstore/scaffolding#1195
• Bump github.com/sigstore/fulcio from 1.5.1 to 1.6.0 by @​dependabot in sigstore/scaffolding#1209
• Bump github.com/sigstore/sigstore from 1.8.7 to 1.8.8 by @​dependabot in sigstore/scaffolding#1207
• Bump github.com/sigstore/cosign/v2 from 2.3.0 to 2.4.0 by @​dependabot in sigstore/scaffolding#1210
• Bump golang.org/x/crypto from 0.25.0 to 0.26.0 by @​dependabot in sigstore/scaffolding#1208
• Bump golang.org/x/net from 0.27.0 to 0.28.0 by @​dependabot in sigstore/scaffolding#1206
• bump terraform and tweak dependabot config by @​bobcallaway in sigstore/scaffolding#1213
• assign bastion SA role in bastion module by @​bobcallaway in sigstore/scaffolding#1212
• Update dependabot.yml by @​k4leung4 in sigstore/scaffolding#1215
• Bump sigstore/cosign-installer from 3.5.0 to 3.6.0 by @​dependabot in sigstore/scaffolding#1218
• Bump github/codeql-action from 3.25.15 to 3.26.0 by @​dependabot in sigstore/scaffolding#1217
• Bump the terraform group across 2 directories with 1 update by @​dependabot in sigstore/scaffolding#1219
• Bump github.com/docker/docker from 26.1.4+incompatible to 26.1.5+incompatible by @​dependabot in sigstore/scaffolding#1220
• Bump trillian-opensource-ci/db_server from e58334f to 7021372 in /config/trillian/mysql by @​dependabot in sigstore/scaffolding#1216
• rename rekor createsecret to eliminate naming confict by @​bobcallaway in sigstore/scaffolding#1221
• Bump projectsigstore/fulcio from v1.5.1 to v1.6.0 in /config/fulcio/fulcio by @​dependabot in sigstore/scaffolding#1211
• Add different run modes for the TUF server, allow saving TUF keys as a secret by @​bkabrda in sigstore/scaffolding#1214
• Bump github/codeql-action from 3.26.0 to 3.26.2 by @​dependabot in sigstore/scaffolding#1232
• Bump github.com/sigstore/fulcio from 1.6.0 to 1.6.2 by @​dependabot in sigstore/scaffolding#1228
• Bump projectsigstore/fulcio from v1.6.0 to v1.6.2 in /config/fulcio/fulcio by @​dependabot in sigstore/scaffolding#1230
• Bump cloud-sql-connectors/cloud-sql-proxy from 2.12.0-alpine to 2.13.0-alpine by @​dependabot in sigstore/scaffolding#1229
• Bump github.com/prometheus/client_golang from 1.19.1 to 1.20.0 by @​dependabot in sigstore/scaffolding#1227
• Update the default k8s version by @​cmurphy in sigstore/scaffolding#1233
• Add default kubelet config for node config for pools and clusters by @​haydentherapper in sigstore/scaffolding#1234
• Bump k8s.io/client-go from 0.30.3 to 0.31.0 by @​dependabot in sigstore/scaffolding#1226
• Bump trillian-opensource-ci/db_server from 7021372 to febf72e in /config/trillian/mysql by @​dependabot in sigstore/scaffolding#1231

Full Changelog: sigstore/scaffolding@v0.7.5...v0.7.6

• fd2699d go mod tidy (#1237)
• 7727491 Bump trillian-opensource-ci/db_server in /config/trillian/mysql (#1231)
• 0c98873 Bump k8s.io/client-go from 0.30.3 to 0.31.0 (#1226)
• c866ea2 Add default kubelet config for node config for pools and clusters (#1234)
• 42ffcb5 Update the default k8s version (#1233)
• 70b4725 Bump github.com/prometheus/client_golang from 1.19.1 to 1.20.0 (#1227)
• 41698aa Bump cloud-sql-connectors/cloud-sql-proxy (#1229)
• 6aa8838 Bump projectsigstore/fulcio in /config/fulcio/fulcio (#1230)
• 2d6505e Bump github.com/sigstore/fulcio from 1.6.0 to 1.6.2 (#1228)
• f616b68 Bump github/codeql-action from 3.26.0 to 3.26.2 (#1232)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)