Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump github.com/smallstep/certificates from 0.27.4 to 0.27.5 #200

Merged
merged 1 commit into from
Oct 21, 2024
Merged

Bump github.com/smallstep/certificates from 0.27.4 to 0.27.5 #200

merged 1 commit into from
Oct 21, 2024

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 21, 2024

Bumps github.com/smallstep/certificates from 0.27.4 to 0.27.5.

Release notes

Sourced from github.com/smallstep/certificates's releases.

Step CA v0.27.5 (24-10-17)

Official Release Artifacts

Linux

OSX Darwin

Windows

For more builds across platforms and architectures, see the Assets section below. And for packaged versions (Docker, k8s, Homebrew), see our installation docs.

Don't see the artifact you need? Open an issue here.

Signatures and Checksums

step-ca uses sigstore/cosign for signing and verifying release artifacts.

Below is an example using cosign to verify a release artifact:

cosign verify-blob \
  --certificate step-ca_darwin_0.27.5_amd64.tar.gz.sig.pem \
  --signature step-ca_darwin_0.27.5_amd64.tar.gz.sig \
  --certificate-identity-regexp "https://github\.com/smallstep/workflows/.*" \
  --certificate-oidc-issuer https://token.actions.githubusercontent.com \
  step-ca_darwin_0.27.5_amd64.tar.gz

The checksums.txt file (in the Assets section below) contains a checksum for every artifact in the release.

Changelog

  • 8d0b4d78ddd2f01784e66ef20c537c018645e799 Update changelog for 0.27.5 (#2035)
  • d4f96b537f533818b22e853ad625379719214643 Merge pull request #2032 from smallstep/dependabot/go_modules/github.com/urfave/cli-1.22.16
  • 89a4708f192cb7b7ea6a5b9a9af268a7ba44aa01 Bump github.com/urfave/cli from 1.22.15 to 1.22.16
  • 3aa8627b123427f05e208013ed34da696ee71610 Merge pull request #2031 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.35.0
  • 3e2be3e87ff99ef18cd5b5aac937a17013d40bd3 Merge pull request #2029 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.54.0
  • 7e4560eea2346e23ba353b150ead66ae772b0550 Merge pull request #2030 from smallstep/dependabot/go_modules/google.golang.org/api-0.200.0
  • 4d59f35212b1e02f605844df6e57526931a9fea0 Merge pull request #2034 from smallstep/mariano/http-client
  • 6b872e8806a513b107659897dc20fdc2b92c3dfe Do not fail creating the provisioner HTTP client
  • ac93ce8d4ecb098374fb54c26361dfeddb78a0d1 Bump github.com/newrelic/go-agent/v3 from 3.34.0 to 3.35.0
  • 2831a8a58afb0d73d20aa3e9ca04314e4615c1cd Bump google.golang.org/api from 0.199.0 to 0.200.0

... (truncated)

Changelog

Sourced from github.com/smallstep/certificates's changelog.

[0.27.5] - 2024-10-17

Added

  • smallstep/certificates#2002

Fixed

  • smallstep/certificates#1994
Commits
  • 8d0b4d7 Update changelog for 0.27.5 (#2035)
  • d4f96b5 Merge pull request #2032 from smallstep/dependabot/go_modules/github.com/urfa...
  • 89a4708 Bump github.com/urfave/cli from 1.22.15 to 1.22.16
  • 3aa8627 Merge pull request #2031 from smallstep/dependabot/go_modules/github.com/newr...
  • 3e2be3e Merge pull request #2029 from smallstep/dependabot/go_modules/go.step.sm/cryp...
  • 7e4560e Merge pull request #2030 from smallstep/dependabot/go_modules/google.golang.o...
  • 4d59f35 Merge pull request #2034 from smallstep/mariano/http-client
  • 6b872e8 Do not fail creating the provisioner HTTP client
  • ac93ce8 Bump github.com/newrelic/go-agent/v3 from 3.34.0 to 3.35.0
  • 2831a8a Bump google.golang.org/api from 0.199.0 to 0.200.0
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump github.com/smallstep/certificates from 0.27.4 to 0.27.5
4f03c15 
Bumps [github.com/smallstep/certificates](https://github.com/smallstep/certificates) from 0.27.4 to 0.27.5.
- [Release notes](https://github.com/smallstep/certificates/releases)
- [Changelog](https://github.com/smallstep/certificates/blob/master/CHANGELOG.md)
- [Commits](smallstep/certificates@v0.27.4...v0.27.5)

---
updated-dependencies:
- dependency-name: github.com/smallstep/certificates
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot requested review from maraino and a team as code owners October 21, 2024 15:30
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Oct 21, 2024
@github-actions github-actions bot added the needs triage Waiting for discussion / prioritization by team label Oct 21, 2024
@github-actions github-actions bot merged commit 1f991e4 into master Oct 21, 2024
14 of 15 checks passed
@github-actions github-actions bot deleted the dependabot/go_modules/github.com/smallstep/certificates-0.27.5 branch October 21, 2024 17:12
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@dopey dopey dopey approved these changes

@maraino maraino Awaiting requested review from maraino maraino is a code owner

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file needs triage Waiting for discussion / prioritization by team
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@dopey