chore: Bump notaryproject/notation-action from 1.1.0 to 1.2.0

[dependabot]

Bumps notaryproject/notation-action from 1.1.0 to 1.2.0.

Release notes

Sourced from notaryproject/notation-action's releases.

v1.2.0

What's New

• setup action now installs Notation CLI v1.2.0 by default.
• Introduced new fields timestamp_url and timestamp_root_cert in sign action for Notation CLI v1.2.0 or later. Users now able to sign with RFC 3161 compliant timestamping.
• The verify action now supports timestamping countersignature verification for Notation CLI v1.2.0 or later. See Trust Policy and Trust Store for more details.
• Introduced new field force_referrers_tag in sign action for Notation CLI v1.2.0 or later. Users who want to use the Referrers API supported by OCI 1.1 need to set force_referrers_tag to false during signing.
• For Notation CLI v1.2.0 or later, the verify action now always uses the Referrers API, if not supported, automatically fallback to the Referrers Tag Schema.

Deprecation

• Field allow_referrers_api for sign action is deprecated for Notation CLI v1.2.0 or later. Use force_referrers_tag instead.
• Field allow_referrers_api for verify action is deprecated for Notation CLI v1.2.0 or later.

What's Changed

• docs: updated README.md by @​Two-Hearts in notaryproject/notation-action#68
• chore(deps): bump @​types/node from 20.14.10 to 22.0.0 by @​dependabot in notaryproject/notation-action#70
• chore(deps): bump @​types/node from 22.0.0 to 22.5.4 by @​dependabot in notaryproject/notation-action#78
• bump: upgrade default Notation to v1.2.0 by @​Two-Hearts in notaryproject/notation-action#79
• feat: timestamping by @​Two-Hearts in notaryproject/notation-action#80
• feat: OCI 1.1 support by @​Two-Hearts in notaryproject/notation-action#82

Full Changelog: notaryproject/notation-action@v1.1.0...v1.2.0

Commits

• 0324234 feat: OCI 1.1 support (#82)
• f713a42 feat: timestamping (#80)
• 91a70f1 bump: upgrade default Notation to v1.2.0 (#79)
• 37313fa chore(deps): bump @​types/node from 22.0.0 to 22.5.4 (#78)
• 6f33dd4 chore(deps): bump @​types/node from 20.14.10 to 22.0.0 (#70)
• a0b46d7 docs: updated README.md (#68)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Looks like notaryproject/notation-action is up-to-date now, so this is no longer needed.