Skip to content

v3.1.0

Latest
Marketplace
Latest
Marketplace

Choose a tag to compare

View all tags
@jku jku released this 21 Oct 07:27
· 19 commits to main since this release
v3.1.0
f832326
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

gh-action-sigstore-python is now compatible with Rekor v2
transparency log (but produced signature bundles still contain Rekor v1 entries by default).

Changed

  • The action now uses sigstore-python 4.1. All other dependencies are also updated
    (#220)

Fixed

  • Fixed incompatibility with Python 3.14 by upgrading dependencies
    (#225)

Added

  • rekor-version argument was added to control the Rekor transparency log
    version when signing. The default version in the gh-action-sigstore-python
    3.x series will remain 1 (except when using staging: true).
    (#228)
Assets 10
Loading