From e46c5bf5646d9c4b8d0e556ca60cc33e8368441d Mon Sep 17 00:00:00 2001 From: Junjie Gao Date: Mon, 2 Sep 2024 05:45:56 +0000 Subject: [PATCH 1/4] fix: update SigningAgent Signed-off-by: Junjie Gao --- signer/signer.go | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/signer/signer.go b/signer/signer.go index cefc7788..625f7dda 100644 --- a/signer/signer.go +++ b/signer/signer.go @@ -34,7 +34,7 @@ import ( ) // signingAgent is the unprotected header field used by signature. -const signingAgent = "Notation/1.0.0" +const signingAgent = "notation-go/1.1.2+unreleased" // genericSigner implements notation.Signer and embeds signature.Signer type genericSigner struct { From 74b46d39992e065ca13f41083661e5185154fedc Mon Sep 17 00:00:00 2001 From: Junjie Gao Date: Mon, 2 Sep 2024 05:48:14 +0000 Subject: [PATCH 2/4] bump: update dependencies Signed-off-by: Junjie Gao --- go.mod | 4 ++-- go.sum | 8 ++++---- 2 files changed, 6 insertions(+), 6 deletions(-) diff --git a/go.mod b/go.mod index c2bea773..ec6b6d77 100644 --- a/go.mod +++ b/go.mod @@ -9,8 +9,8 @@ require ( github.com/opencontainers/go-digest v1.0.0 github.com/opencontainers/image-spec v1.1.0 github.com/veraison/go-cose v1.1.0 - golang.org/x/crypto v0.23.0 - golang.org/x/mod v0.17.0 + golang.org/x/crypto v0.26.0 + golang.org/x/mod v0.20.0 oras.land/oras-go/v2 v2.5.0 ) diff --git a/go.sum b/go.sum index 39df7fca..74ccf33d 100644 --- a/go.sum +++ b/go.sum @@ -60,12 +60,12 @@ golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5y golang.org/x/crypto v0.6.0/go.mod h1:OFC/31mSvZgRz0V1QTNCzfAI1aIRzbiufJtkMIlEp58= golang.org/x/crypto v0.19.0/go.mod h1:Iy9bg/ha4yyC70EfRS8jz+B6ybOBKMaSxLj6P6oBDfU= golang.org/x/crypto v0.21.0/go.mod h1:0BP7YvVV9gBbVKyeTG0Gyn+gZm94bibOW5BjDEYAOMs= -golang.org/x/crypto v0.23.0 h1:dIJU/v2J8Mdglj/8rJ6UUOM3Zc9zLZxVZwwxMooUSAI= -golang.org/x/crypto v0.23.0/go.mod h1:CKFgDieR+mRhux2Lsu27y0fO304Db0wZe70UKqHu0v8= +golang.org/x/crypto v0.26.0 h1:RrRspgV4mU+YwB4FYnuBoKsUapNIL5cohGAmSH3azsw= +golang.org/x/crypto v0.26.0/go.mod h1:GY7jblb9wI+FOo5y8/S2oY4zWP07AkOJ4+jxCqdqn54= golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4/go.mod h1:jJ57K6gSWd91VN4djpZkiMVwK6gcyfeH4XE8wZrZaV4= golang.org/x/mod v0.8.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs= -golang.org/x/mod v0.17.0 h1:zY54UmvipHiNd+pm+m0x9KhZ9hl1/7QNMyxXbc6ICqA= -golang.org/x/mod v0.17.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c= +golang.org/x/mod v0.20.0 h1:utOm6MM3R3dnawAiJgn0y+xvuYRsm1RKM/4giyfDgV0= +golang.org/x/mod v0.20.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c= golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s= golang.org/x/net v0.0.0-20200114155413-6afb5195e5aa/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s= golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg= From 320dd5c37d9981d5633eac712237e062ce0415c4 Mon Sep 17 00:00:00 2001 From: Junjie Gao Date: Mon, 2 Sep 2024 05:49:38 +0000 Subject: [PATCH 3/4] fix: update codecov Signed-off-by: Junjie Gao --- .github/workflows/build.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 6e9b6765..8b6e5c5e 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -26,3 +26,5 @@ on: jobs: build: uses: notaryproject/notation-core-go/.github/workflows/reusable-build.yml@main + secrets: + CODECOV_TOKEN: ${{ secrets.CODECOV_TOKEN }} From 9259fe65f9d6ef98fc5f422bdd1d093a0e336ded Mon Sep 17 00:00:00 2001 From: Patrick Zheng Date: Tue, 27 Aug 2024 09:59:07 +0800 Subject: [PATCH 4/4] bump: upgrade golang to v1.22 (#440) Signed-off-by: Patrick Zheng Signed-off-by: Junjie Gao --- go.mod | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/go.mod b/go.mod index ec6b6d77..591b3039 100644 --- a/go.mod +++ b/go.mod @@ -1,6 +1,6 @@ module github.com/notaryproject/notation-go -go 1.21 +go 1.22 require ( github.com/go-ldap/ldap/v3 v3.4.8