Bump chainguard-dev/cosign from 0.0.31 to 0.1.0 #242

dependabot · 2025-10-01T13:19:26Z

Bumps chainguard-dev/cosign from 0.0.31 to 0.1.0.

Release notes

Sourced from chainguard-dev/cosign's releases.

v0.1.0

What's Changed

Bump the terraform group across 1 directory with 2 updates by @dependabot[bot] in chainguard-dev/terraform-provider-cosign#351

Bump github.com/sigstore/sigstore from 1.9.4 to 1.9.5 by @dependabot[bot] in chainguard-dev/terraform-provider-cosign#345

Bump step-security/harden-runner from 2.12.0 to 2.12.1 by @dependabot[bot] in chainguard-dev/terraform-provider-cosign#346

Bump github.com/google/certificate-transparency-go from 1.3.1 to 1.3.2 by @dependabot[bot] in chainguard-dev/terraform-provider-cosign#348

Update variables in test.yml by @egibs in chainguard-dev/terraform-provider-cosign#355

Bump step-security/harden-runner from 2.12.1 to 2.12.2 by @dependabot[bot] in chainguard-dev/terraform-provider-cosign#354

Bump github.com/sigstore/cosign/v2 from 2.5.0 to 2.5.2 by @dependabot[bot] in chainguard-dev/terraform-provider-cosign#352

Bump github.com/go-viper/mapstructure/v2 from 2.2.1 to 2.3.0 in the go_modules group by @dependabot[bot] in chainguard-dev/terraform-provider-cosign#353

fix env ref by @k4leung4 in chainguard-dev/terraform-provider-cosign#358

Bump github.com/hashicorp/terraform-plugin-docs from 0.21.0 to 0.22.0 in the terraform group by @dependabot[bot] in chainguard-dev/terraform-provider-cosign#356

Bump github.com/sigstore/policy-controller from 0.12.1 to 0.13.0 by @dependabot[bot] in chainguard-dev/terraform-provider-cosign#357

Bump step-security/harden-runner from 2.12.2 to 2.13.0 by @dependabot[bot] in chainguard-dev/terraform-provider-cosign#359

Bump github.com/chainguard-dev/terraform-provider-oci from 0.0.22 to 0.0.23 by @dependabot[bot] in chainguard-dev/terraform-provider-cosign#360

Bump github.com/sigstore/cosign/v2 from 2.5.2 to 2.5.3 by @dependabot[bot] in chainguard-dev/terraform-provider-cosign#361

Bump github.com/go-viper/mapstructure/v2 from 2.3.0 to 2.4.0 in the go_modules group by @dependabot[bot] in chainguard-dev/terraform-provider-cosign#373

Bump google-github-actions/setup-gcloud from 2.1.4 to 3.0.1 by @dependabot[bot] in chainguard-dev/terraform-provider-cosign#375

Bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 by @dependabot[bot] in chainguard-dev/terraform-provider-cosign#371

Bump step-security/workflow-conclusion-action from 3.0.7 to 3.0.8 by @dependabot[bot] in chainguard-dev/terraform-provider-cosign#368

Bump google-github-actions/get-secretmanager-secrets from 2.2.3 to 3.0.0 by @dependabot[bot] in chainguard-dev/terraform-provider-cosign#377

Bump the terraform group across 1 directory with 2 updates by @dependabot[bot] in chainguard-dev/terraform-provider-cosign#372

Bump github.com/chainguard-dev/terraform-provider-oci from 0.0.23 to 0.0.25 by @dependabot[bot] in chainguard-dev/terraform-provider-cosign#370

Bump actions/checkout from 4.2.2 to 5.0.0 by @dependabot[bot] in chainguard-dev/terraform-provider-cosign#369

Bump github.com/go-openapi/swag from 0.23.1 to 0.24.1 by @dependabot[bot] in chainguard-dev/terraform-provider-cosign#379

Bump github.com/secure-systems-lab/go-securesystemslib from 0.9.0 to 0.9.1 by @dependabot[bot] in chainguard-dev/terraform-provider-cosign#366

Bump step-security/harden-runner from 2.13.0 to 2.13.1 by @dependabot[bot] in chainguard-dev/terraform-provider-cosign#384

Bump actions/setup-go from 5.5.0 to 6.0.0 by @dependabot[bot] in chainguard-dev/terraform-provider-cosign#380

Bump golang.org/x/time from 0.12.0 to 0.13.0 by @dependabot[bot] in chainguard-dev/terraform-provider-cosign#383

Bump step-security/google-github-auth from 2.1.10 to 2.1.12 by @dependabot[bot] in chainguard-dev/terraform-provider-cosign#381

Bump github.com/sigstore/rekor from 1.3.10 to 1.4.2 by @dependabot[bot] in chainguard-dev/terraform-provider-cosign#378

Change default conflict mode to "SKIPSAME" by @markusthoemmes in chainguard-dev/terraform-provider-cosign#393

New Contributors

@egibs made their first contribution in chainguard-dev/terraform-provider-cosign#355

@markusthoemmes made their first contribution in chainguard-dev/terraform-provider-cosign#393

Full Changelog: chainguard-dev/terraform-provider-cosign@v0.0.31...v0.1.0

Commits

dd0d7a8 Change default conflict mode to "SKIPSAME" (#393)
4029ae7 Bump github.com/sigstore/rekor from 1.3.10 to 1.4.2 (#378)
ed4de45 Bump step-security/google-github-auth from 2.1.10 to 2.1.12 (#381)
6686978 Bump golang.org/x/time from 0.12.0 to 0.13.0 (#383)
9186eba Bump actions/setup-go from 5.5.0 to 6.0.0 (#380)
67ed2f3 Bump step-security/harden-runner from 2.13.0 to 2.13.1 (#384)
82334bc Bump github.com/secure-systems-lab/go-securesystemslib from 0.9.0 to 0.9.1 (#...
f804ad5 Bump github.com/go-openapi/swag from 0.23.1 to 0.24.1 (#379)
978bc20 Bump actions/checkout from 4.2.2 to 5.0.0 (#369)
d21b23a Bump github.com/chainguard-dev/terraform-provider-oci from 0.0.23 to 0.0.25 (...
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [chainguard-dev/cosign](https://github.com/chainguard-dev/terraform-provider-cosign) from 0.0.31 to 0.1.0. - [Release notes](https://github.com/chainguard-dev/terraform-provider-cosign/releases) - [Changelog](https://github.com/chainguard-dev/terraform-provider-cosign/blob/main/.goreleaser.yml) - [Commits](chainguard-dev/terraform-provider-cosign@v0.0.31...v0.1.0) --- updated-dependencies: - dependency-name: chainguard-dev/cosign dependency-version: 0.1.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added dependencies Pull requests that update a dependency file terraform Pull requests that update Terraform code labels Oct 1, 2025

cpanato approved these changes Oct 1, 2025

View reviewed changes

cpanato merged commit 09f9cb2 into main Oct 1, 2025
11 checks passed

cpanato deleted the dependabot/terraform/chainguard-dev/cosign-0.1.0 branch October 1, 2025 13:22

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Bump chainguard-dev/cosign from 0.0.31 to 0.1.0 #242

Bump chainguard-dev/cosign from 0.0.31 to 0.1.0 #242

Uh oh!

dependabot bot commented on behalf of github Oct 1, 2025

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Bump chainguard-dev/cosign from 0.0.31 to 0.1.0 #242

Bump chainguard-dev/cosign from 0.0.31 to 0.1.0 #242

Uh oh!

Conversation

dependabot bot commented on behalf of github Oct 1, 2025

v0.1.0

What's Changed

New Contributors

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants