Bump sigstore from 4.0.0 to 4.2.0#338
Merged
Merged
Conversation
Member
|
There's a 3.6.7 we could instead: https://github.com/sigstore/sigstore-python/releases/tag/v3.6.7 |
1f02cc5 to
e484530
Compare
Member
|
@dependabot ignore this major version |
Contributor
Author
|
OK, I won't notify you about version 4.x.x again, unless you re-open this PR. |
Merged
Member
|
@dependabot reopen We've updated to sigstore 4.0 #289 and are ready for new ones, thank you. |
Member
|
@dependabot recreate |
Bumps [sigstore](https://github.com/sigstore/sigstore-python) from 4.0.0 to 4.2.0. - [Release notes](https://github.com/sigstore/sigstore-python/releases) - [Changelog](https://github.com/sigstore/sigstore-python/blob/main/CHANGELOG.md) - [Commits](sigstore/sigstore-python@v4.0.0...v4.2.0) --- updated-dependencies: - dependency-name: sigstore dependency-version: 4.2.0 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>
e484530 to
8772683
Compare
Member
|
sigstore 4.3.0 and 4.4.0 are also out, but the seven-day cooldown is doing its job 👍 |
hugovk
approved these changes
Jul 7, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Bumps sigstore from 4.0.0 to 4.2.0.
Release notes
Sourced from sigstore's releases.
Changelog
Sourced from sigstore's changelog.
Commits
94818e4Release 4.2 (#1670)5e77497Merge commit from forkae9caa7build(deps-dev): update ruff requirement from <0.14.14 to <0.14.15 (#1668)b1e5095build(deps): bump github/codeql-action in the actions group (#1669)f5feacebuild(deps): bump the actions group with 2 updates (#1666)802f96bbuild(deps): bump sigstore/sigstore-conformance from 0.0.24 to 0.0.25 in the ...4ba9ca3build(deps): bump pyasn1 from 0.6.1 to 0.6.2 (#1662)409fadbbuild(deps-dev): update ruff requirement from <0.14.13 to <0.14.14 (#1663)b1ef51cbuild(deps-dev): update ruff requirement from <0.14.12 to <0.14.13 (#1658)e6cc009Include SCT extension in signature data (#1659)