Skip to content
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: sigstore/sigstore-python
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: v3.6.0
Choose a base ref
...
head repository: sigstore/sigstore-python
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: v3.6.1
Choose a head ref
  • 13 commits
  • 36 files changed
  • 5 contributors

Commits on Dec 11, 2024

  1. build(deps): bump cryptography from 43.0.3 to 44.0.0 (#1233) 

    Bumps [cryptography](https://github.com/pyca/cryptography) from 43.0.3 to 44.0.0.
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](pyca/cryptography@43.0.3...44.0.0)

---
updated-dependencies:
- dependency-name: cryptography
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    @dependabot
    dependabot[bot] authored Dec 11, 2024
    Configuration menu
    Copy the full SHA
    b3e3aa9 View commit details
    Browse the repository at this point in the history

  2. build(deps): bump rfc3161-client from 0.0.4 to 0.1.1 (#1246) 

    Bumps [rfc3161-client](https://github.com/trailofbits/rfc3161-client) from 0.0.4 to 0.1.1.
- [Release notes](https://github.com/trailofbits/rfc3161-client/releases)
- [Changelog](https://github.com/trailofbits/rfc3161-client/blob/main/CHANGELOG.md)
- [Commits](trailofbits/rfc3161-client@v0.0.4...v0.1.1)

---
updated-dependencies:
- dependency-name: rfc3161-client
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    @dependabot
    dependabot[bot] authored Dec 11, 2024
    Configuration menu
    Copy the full SHA
    9ef5251 View commit details
    Browse the repository at this point in the history

  3. Update pinned requirements for v3.6.0 (#1249) 

    Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: William Woodruff <william@trailofbits.com>
    @github-actions @woodruffw
    github-actions[bot] and woodruffw authored Dec 11, 2024
    Configuration menu
    Copy the full SHA
    540ed93 View commit details
    Browse the repository at this point in the history

  4. build(deps): bump the actions group with 2 updates (#1253) 

    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    @dependabot
    dependabot[bot] authored Dec 11, 2024
    Configuration menu
    Copy the full SHA
    6a4edb5 View commit details
    Browse the repository at this point in the history

  5. Update Sigstore Timestamp using dependabot (#1225) 

    Co-authored-by: William Woodruff <william@trailofbits.com>
    @DarkaMaul @woodruffw
    DarkaMaul and woodruffw authored Dec 11, 2024
    Configuration menu
    Copy the full SHA
    49c0706 View commit details
    Browse the repository at this point in the history

  6. bump rfc3161-client (#1251)

    @woodruffw
    woodruffw authored Dec 11, 2024
    Configuration menu
    Copy the full SHA
    9996ae8 View commit details
    Browse the repository at this point in the history

Commits on Dec 12, 2024

  1. Remove vestigial attestations: true (#1254)

    @di
    di authored Dec 12, 2024
    Configuration menu
    Copy the full SHA
    0c1fafe View commit details
    Browse the repository at this point in the history

  2. build(deps): update ruff requirement from <0.8.3 to <0.8.4 (#1256)

    @dependabot
    dependabot[bot] authored Dec 12, 2024
    Configuration menu
    Copy the full SHA
    491f3f8 View commit details
    Browse the repository at this point in the history

Commits on Dec 13, 2024

  1. build(deps): bump github/codeql-action in the actions group (#1260)

    @dependabot
    dependabot[bot] authored Dec 13, 2024
    Configuration menu
    Copy the full SHA
    6a98ddd View commit details
    Browse the repository at this point in the history

Commits on Dec 16, 2024

  1. Restructure documentation (#1255) 

    * Draft a POLICY

Signed-off-by: Alexis <alexis.challande@trailofbits.com>

* Update documentation

Signed-off-by: Alexis <alexis.challande@trailofbits.com>

* Add missing license

Signed-off-by: Alexis <alexis.challande@trailofbits.com>

* Remove pdoc dependency

Signed-off-by: Alexis <alexis.challande@trailofbits.com>

* Update documentation

Signed-off-by: Alexis <alexis.challande@trailofbits.com>

* Improve documentation

Signed-off-by: Alexis <alexis.challande@trailofbits.com>

* Explicit failure reasons

Signed-off-by: Alexis <alexis.challande@trailofbits.com>

* Remove API folder

* Add api folder

* Update policy.md

Signed-off-by: Alexis <alexis.challande@trailofbits.com>

* Remove API folder

Signed-off-by: Alexis <alexis.challande@trailofbits.com>

* Add api folder

Signed-off-by: Alexis <alexis.challande@trailofbits.com>

* Update policy.md

Signed-off-by: Alexis <alexis.challande@trailofbits.com>

---------

Signed-off-by: Alexis <alexis.challande@trailofbits.com>
    @DarkaMaul
    DarkaMaul authored Dec 16, 2024
    Configuration menu
    Copy the full SHA
    25e0ad4 View commit details
    Browse the repository at this point in the history

Commits on Dec 19, 2024

  1. build(deps): bump actions/upload-artifact (#1261) 

    Bumps the actions group in /.github/actions/upload-coverage with 1 update: [actions/upload-artifact](https://github.com/actions/upload-artifact).


Updates `actions/upload-artifact` from 4.4.3 to 4.5.0
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](actions/upload-artifact@b4b15b8...6f51ac0)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    @dependabot
    dependabot[bot] authored Dec 19, 2024
    Configuration menu
    Copy the full SHA
    36a958f View commit details
    Browse the repository at this point in the history

  2. build(deps): bump actions/upload-artifact in the actions group (#1262) 

    Bumps the actions group with 1 update: [actions/upload-artifact](https://github.com/actions/upload-artifact).


Updates `actions/upload-artifact` from 4.4.3 to 4.5.0
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](actions/upload-artifact@b4b15b8...6f51ac0)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: William Woodruff <william@trailofbits.com>
    @dependabot @woodruffw
    dependabot[bot] and woodruffw authored Dec 19, 2024
    Configuration menu
    Copy the full SHA
    0c6deea View commit details
    Browse the repository at this point in the history

  3. sigstore: prep 3.6.1 (#1263) 

    Signed-off-by: William Woodruff <william@trailofbits.com>
    @woodruffw
    woodruffw authored Dec 19, 2024
    Configuration menu
    Copy the full SHA
    896cfe1 View commit details
    Browse the repository at this point in the history
Loading