Bump github.com/sigstore/policy-controller from 0.8.4 to 0.10.0

[dependabot]

Bumps github.com/sigstore/policy-controller from 0.8.4 to 0.10.0.

Release notes

Sourced from github.com/sigstore/policy-controller's releases.

v0.9.0

What's Changed

• chore(deps): Bump actions/upload-artifact from 4.2.0 to 4.3.0 by @​dependabot in sigstore/policy-controller#1214
• chore(deps): Bump google-github-actions/setup-gcloud from 2.0.1 to 2.1.0 by @​dependabot in sigstore/policy-controller#1213
• chore(deps): Bump google-github-actions/auth from 2.0.1 to 2.1.0 by @​dependabot in sigstore/policy-controller#1215
• chore(deps): Bump k8s.io/code-generator from 0.29.0 to 0.29.1 by @​dependabot in sigstore/policy-controller#1203
• chore(deps): Bump github.com/aws/aws-sdk-go from 1.50.1 to 1.50.2 by @​dependabot in sigstore/policy-controller#1217
• chore(deps): Bump github.com/aws/aws-sdk-go from 1.50.2 to 1.50.3 by @​dependabot in sigstore/policy-controller#1218
• chore(deps): Bump github.com/aws/aws-sdk-go from 1.50.3 to 1.50.4 by @​dependabot in sigstore/policy-controller#1222
• chore(deps): Bump codecov/codecov-action from 3.1.4 to 3.1.5 by @​dependabot in sigstore/policy-controller#1221
• chore(deps): Bump anchore/sbom-action from 0.15.5 to 0.15.6 by @​dependabot in sigstore/policy-controller#1223
• chore(deps): Bump github.com/aws/aws-sdk-go from 1.50.4 to 1.50.5 by @​dependabot in sigstore/policy-controller#1224
• chore(deps): Bump github.com/google/go-containerregistry from 0.18.0 to 0.19.0 by @​dependabot in sigstore/policy-controller#1225
• chore(deps): Bump github.com/aws/aws-sdk-go from 1.50.5 to 1.50.6 by @​dependabot in sigstore/policy-controller#1226
• chore(deps): Bump codecov/codecov-action from 3.1.5 to 3.1.6 by @​dependabot in sigstore/policy-controller#1229
• chore(deps): Bump anchore/sbom-action from 0.15.6 to 0.15.7 by @​dependabot in sigstore/policy-controller#1230
• chore(deps): Bump anchore/sbom-action from 0.15.7 to 0.15.8 by @​dependabot in sigstore/policy-controller#1234
• chore(deps): Bump sigstore/cosign-installer from 3.3.0 to 3.4.0 by @​dependabot in sigstore/policy-controller#1235
• chore(deps): Bump codecov/codecov-action from 3.1.6 to 4.0.0 by @​dependabot in sigstore/policy-controller#1236
• chore(deps): Bump github.com/aws/aws-sdk-go from 1.50.6 to 1.50.8 by @​dependabot in sigstore/policy-controller#1231
• chore(deps): Bump github.com/aws/aws-sdk-go from 1.50.8 to 1.50.9 by @​dependabot in sigstore/policy-controller#1238
• chore(deps): Bump codecov/codecov-action from 4.0.0 to 4.0.1 by @​dependabot in sigstore/policy-controller#1237
• chore(deps): Bump github.com/aws/aws-sdk-go from 1.50.9 to 1.50.10 by @​dependabot in sigstore/policy-controller#1240
• chore(deps): Bump github.com/sigstore/rekor from 1.3.4 to 1.3.5 by @​dependabot in sigstore/policy-controller#1239
• chore(deps): Bump google-github-actions/auth from 2.1.0 to 2.1.1 by @​dependabot in sigstore/policy-controller#1241
• chore(deps): Bump github.com/aws/aws-sdk-go from 1.50.10 to 1.50.12 by @​dependabot in sigstore/policy-controller#1244
• chore(deps): Bump actions/upload-artifact from 4.3.0 to 4.3.1 by @​dependabot in sigstore/policy-controller#1242
• chore(deps): Bump golang.org/x/net from 0.20.0 to 0.21.0 by @​dependabot in sigstore/policy-controller#1247
• chore(deps): Bump github.com/aws/aws-sdk-go from 1.50.12 to 1.50.13 by @​dependabot in sigstore/policy-controller#1249
• chore(deps): Bump mikefarah/yq from 4.40.5 to 4.40.7 by @​dependabot in sigstore/policy-controller#1252
• chore(deps): Bump github.com/aws/aws-sdk-go from 1.50.13 to 1.50.14 by @​dependabot in sigstore/policy-controller#1250
• chore(deps): Bump github.com/aws/aws-sdk-go from 1.50.14 to 1.50.15 by @​dependabot in sigstore/policy-controller#1253
• chore(deps): Bump github.com/aws/aws-sdk-go from 1.50.15 to 1.50.16 by @​dependabot in sigstore/policy-controller#1254
• chore(deps): Bump golangci/golangci-lint-action from 3.7.0 to 4.0.0 by @​dependabot in sigstore/policy-controller#1251
• chore(deps): Bump k8s.io/client-go from 0.29.1 to 0.29.2 by @​dependabot in sigstore/policy-controller#1256
• Bump cosign to v2.2.3 by @​priyawadhwa in sigstore/policy-controller#1270
• ci: remove support for Kubernetes v1.22.x by @​hectorj2f in sigstore/policy-controller#1269
• chore(deps): Bump codecov/codecov-action from 4.0.1 to 4.0.2 by @​dependabot in sigstore/policy-controller#1272
• chore(deps): Bump mikefarah/yq from 4.40.7 to 4.41.1 by @​dependabot in sigstore/policy-controller#1262
• chore(deps): Bump github.com/aws/aws-sdk-go from 1.50.16 to 1.50.25 by @​dependabot in sigstore/policy-controller#1273
• chore(deps): Bump k8s.io/code-generator from 0.29.1 to 0.29.2 by @​dependabot in sigstore/policy-controller#1258
• chore(deps): Bump github.com/go-jose/go-jose/v3 from 3.0.1 to 3.0.2 by @​dependabot in sigstore/policy-controller#1277
• chore(deps): Bump mikefarah/yq from 4.41.1 to 4.42.1 by @​dependabot in sigstore/policy-controller#1275
• chore(deps): Bump google-github-actions/auth from 2.1.1 to 2.1.2 by @​dependabot in sigstore/policy-controller#1276
• chore(deps): Bump golang.org/x/crypto from 0.19.0 to 0.20.0 by @​dependabot in sigstore/policy-controller#1279
• chore(deps): Bump codecov/codecov-action from 4.0.2 to 4.1.0 by @​dependabot in sigstore/policy-controller#1280
• chore(deps): Bump github.com/aws/aws-sdk-go from 1.50.25 to 1.50.26 by @​dependabot in sigstore/policy-controller#1278
• chore(deps): Bump go.uber.org/zap from 1.26.0 to 1.27.0 by @​dependabot in sigstore/policy-controller#1266
• chore(deps): Bump github.com/sigstore/sigstore/pkg/signature/kms/azure from 1.8.1 to 1.8.2 by @​dependabot in sigstore/policy-controller#1283
• chore(deps): Bump imranismail/setup-kustomize from a76db1c6419124d51470b1e388c4b29476f495f1 to 2ba527d4d055ab63514ba50a99456fc35684947f # v2.1.0 by @​dependabot in sigstore/policy-controller#1274

... (truncated)

Changelog

Sourced from github.com/sigstore/policy-controller's changelog.

v0.1.0

Enhancements

• Refactor entire policy validation into ValidatePolicy.
• Set reinvocationPolicy to 'IfNeeded' for the tag resolver webhook
• Add policy-tester CLI for testing ClusterImagePolicies
• (tester) Validate CIP before using it.
• (tester) call SetDefaults on cip before conversion
• remove v1.21 k8s which is deprecated and add v1.24
• chore: do not fail to verify signed images if the secret-name flag is not set

Bug fixes

• Fix issue #38. Do not block status updates.
• Avoid test race condition.
• Fix sigstore/cosign#1653
• Allow for @ symbol on globs to support image refs with digest
• Validate globs at admission time.
• fix: add missing conversion to CRD
• fix: solve vuln from our opa version
• Fix issue #24
• Bump some vulnerable dependencies; base on distroless/static

Others

• Bump mikefarah/yq from 4.25.3 to 4.26.1
• Bump actions/dependency-review-action from 2.0.2 to 2.0.4
• Bump google.golang.org/grpc from 1.47.0 to 1.48.0
• Bump github/codeql-action from 2.1.15 to 2.1.16
• Bump actions/cache from 3.0.4 to 3.0.5
• Bump actions/setup-go from 3.2.0 to 3.2.1
• update knative to use v1.5.0 release
• update scafolding to use release v0.3.0
• Bump github.com/aws/aws-sdk-go-v2 from 1.16.6 to 1.16.7
• Bump sigstore/cosign-installer from 2.4.0 to 2.4.1
• Bump github.com/aws/aws-sdk-go-v2 from 1.16.5 to 1.16.6
• increase timeout for golangci-lint
• Bump github.com/stretchr/testify from 1.7.5 to 1.8.0
• Bump github/codeql-action from 2.1.14 to 2.1.15
• Switch to direct returns
• Bump github.com/hashicorp/go-version from 1.5.0 to 1.6.0
• Bump ossf/scorecard-action from 1.1.1 to 1.1.2
• chore: skip secret not found
• Bump github.com/stretchr/testify from 1.7.4 to 1.7.5
• Bump mikefarah/yq from 4.25.2 to 4.25.3
• Bump github/codeql-action from 2.1.13 to 2.1.14
• Bump github.com/google/go-containerregistry from 0.9.0 to 0.10.0
• Bump github.com/stretchr/testify from 1.7.2 to 1.7.4
• Bump github/codeql-action from 2.1.12 to 2.1.13

... (truncated)

Commits

• a54d830 chore(deps): Bump github.com/aws/aws-sdk-go from 1.54.14 to 1.54.15 (#1534)
• d2b2f9a chore(deps): Bump sigs.k8s.io/release-utils from 0.8.2 to 0.8.3 (#1533)
• 876e5b9 chore(deps): Bump golang.org/x/net from 0.26.0 to 0.27.0 (#1531)
• 01ff4c8 chore(deps): Bump golang.org/x/crypto from 0.24.0 to 0.25.0 (#1530)
• 6932216 chore(deps): Bump actions/upload-artifact from 4.3.3 to 4.3.4 (#1532)
• 97ecc9f chore(deps): Bump github.com/sigstore/scaffolding from 0.7.1 to 0.7.3 (#1529)
• ed93ab1 chore(deps): Bump github.com/aws/aws-sdk-go from 1.54.13 to 1.54.14 (#1528)
• 83ba705 chore(deps): Bump github.com/aws/aws-sdk-go from 1.54.12 to 1.54.13 (#1527)
• 518173e chore(deps): Bump github.com/aws/aws-sdk-go from 1.54.11 to 1.54.12 (#1526)
• bfc49a6 chore(deps): Bump github.com/docker/docker (#1524)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[stevebeattie]

@dependabot rebase

[dependabot]

Superseded by #119.