Bump the all group in /acceptance with 5 updates

[dependabot]

Bumps the all group in /acceptance with 5 updates:

Package	From	To
github.com/enterprise-contract/enterprise-contract-controller/api	0.1.2	0.1.8
github.com/go-openapi/strfmt	0.21.10	0.22.0
github.com/secure-systems-lab/go-securesystemslib	0.7.0	0.8.0
github.com/sigstore/sigstore	1.7.6	1.8.0
github.com/testcontainers/testcontainers-go	0.26.0	0.27.0

Updates github.com/enterprise-contract/enterprise-contract-controller/api from 0.1.2 to 0.1.8

Release notes

Sourced from github.com/enterprise-contract/enterprise-contract-controller/api's releases.

API Release api/v0.1.8

What's Changed

• Bump k8s.io/apimachinery from 0.28.4 to 0.29.0 in /api by @​dependabot in enterprise-contract/enterprise-contract-controller#235
• Bump k8s.io/apiextensions-apiserver from 0.28.4 to 0.29.0 in /api by @​dependabot in enterprise-contract/enterprise-contract-controller#236
• Use official golang image by @​lcarva in enterprise-contract/enterprise-contract-controller#243

Full Changelog: enterprise-contract/enterprise-contract-controller@api/v0.1.6...api/v0.1.8

API Release api/v0.1.6

What's Changed

• Bump github/codeql-action from 2.22.9 to 3.22.11 by @​dependabot in enterprise-contract/enterprise-contract-controller#237
• Bump k8s.io/client-go from 0.28.4 to 0.29.0 by @​dependabot in enterprise-contract/enterprise-contract-controller#239
• Bump actions/upload-artifact from 3.1.3 to 4.0.0 by @​dependabot in enterprise-contract/enterprise-contract-controller#238

Full Changelog: enterprise-contract/enterprise-contract-controller@api/v0.1.4...api/v0.1.6

API Release api/v0.1.4

What's Changed

• Fix broken reference in docs by @​joejstuart in enterprise-contract/enterprise-contract-controller#241
• Use latest Go when building container image by @​lcarva in enterprise-contract/enterprise-contract-controller#242

Full Changelog: enterprise-contract/enterprise-contract-controller@api/v0.1.2...api/v0.1.4

Commits

• 8b16fa2 Merge pull request #243 from lcarva/go-1.21
• 9259269 Merge pull request #236 from enterprise-contract/dependabot/go_modules/api/k8...
• 824fa91 Run go mod tidy for dependabot
• ef40cfe Use official golang image
• 727d05f Bump k8s.io/apiextensions-apiserver from 0.28.4 to 0.29.0 in /api
• 387eca2 Merge pull request #235 from enterprise-contract/dependabot/go_modules/api/k8...
• e33e851 Tidy modules for dependabot
• d3c97bb Bump k8s.io/apimachinery from 0.28.4 to 0.29.0 in /api
• e55f975 Merge pull request #238 from enterprise-contract/dependabot/github_actions/ac...
• 127fe2f Merge pull request #239 from enterprise-contract/dependabot/go_modules/k8s.io...
• Additional commits viewable in compare view

Updates github.com/go-openapi/strfmt from 0.21.10 to 0.22.0

Commits

• 740a7c6 fix(uuid): UUID regexes to support all-or-none '-' separator
• 03a91f9 ci: fixed cache warning in ci;fixed code coverage on all sub packages
• See full diff in compare view

Updates github.com/secure-systems-lab/go-securesystemslib from 0.7.0 to 0.8.0

Commits

• 7e48227 Merge pull request #66 from secure-systems-lab/dependabot/go_modules/golang.o...
• e615bd3 chore(deps): bump golang.org/x/crypto from 0.16.0 to 0.17.0
• c55c6a6 Merge pull request #65 from adityasaky/sigstore-support
• a0c6afa Support sigstore fields in public key
• 2eb6599 Merge pull request #64 from secure-systems-lab/dependabot/github_actions/acti...
• 7e04bd5 chore(deps): bump actions/setup-go from 4.1.0 to 5.0.0
• a8e3b1f Merge pull request #63 from secure-systems-lab/dependabot/go_modules/golang.o...
• 7539050 chore(deps): bump golang.org/x/crypto from 0.15.0 to 0.16.0
• 8613a43 Merge pull request #59 from secure-systems-lab/dependabot/github_actions/acti...
• 8402a9f Merge pull request #60 from neilnaveen/neil/signerverifier/utils
• Additional commits viewable in compare view

Updates github.com/sigstore/sigstore from 1.7.6 to 1.8.0

Release notes

Sourced from github.com/sigstore/sigstore's releases.

v1.8.0

What's Changed

• Bump the github.com/letsencrypt/boulder to the latest version to update vulnerable go-jose by @​OlegOAndreev in sigstore/sigstore#1548
• Update dependabot to weekly by @​haydentherapper in sigstore/sigstore#1569
• Adapt to simplified DSSE signing interface by @​adityasaky in sigstore/sigstore#1580

New Contributors

• @​OlegOAndreev made their first contribution in sigstore/sigstore#1548

Full Changelog: sigstore/sigstore@v1.7.6...v1.8.0

Commits

• b9063a4 build(deps): Bump the all group with 4 updates (#1581)
• fac5a33 build(deps): Bump the all group in /pkg/signature/kms/gcp with 1 update
• d217337 Adapt to simplified DSSE signing interface
• 8bd737c build(deps): Bump golang.org/x/crypto in /pkg/signature/kms/aws
• 9a15769 build(deps): Bump golang.org/x/crypto in /pkg/signature/kms/hashivault
• b898510 build(deps): Bump golang.org/x/crypto in /test/fuzz
• 5aa5231 build(deps): Bump golang.org/x/crypto in /pkg/signature/kms/gcp
• ca259be build(deps): Bump golang.org/x/crypto in /pkg/signature/kms/azure
• b5bb008 build(deps): Bump the all group in /pkg/signature/kms/aws with 2 updates
• e8d53bc build(deps): Bump the all group
• Additional commits viewable in compare view

Updates github.com/testcontainers/testcontainers-go from 0.26.0 to 0.27.0

Release notes

Sourced from github.com/testcontainers/testcontainers-go's releases.

v0.27.0

What's Changed

⚠️ Breaking Changes

Building images with FromDockerfile

The ImageBuildInfo interface now includes a new method: BuildOptions, which is used to configure the build process. This method returns the image build options when building a Docker image from a Dockerfile, and it will apply some defaults and finally call the new BuildOptionsModifier method from the FromDockerfile struct, if set. This way it's possible to access Docker's types.ImageBuildOptions type and modify it before the build process starts.

• feat: support customizing the Docker build command (#1931) @​mdelapenya

Executing commands using the Executable interface

It now includes an Options method that needs to be implemented. This method will allow configuring the exec options added in this PR for the WithStartupCommand functional option. If your code is implementing Executable, you can embed the ExecOptions struct in your own struct in order to satisfy the interface. Please take a look at the RabbitMQ test types to see examples on how to do it.

• feat: support for executing commands in a container with user, workDir and env (#1914) @​mdelapenya

🔒 Security

• chore(deps): bump golang.org/x/crypto to 0.17.0 in /modules (#2006) @​mdelapenya

🚀 Features

• Add neo4j license agreement customization options (#2036) @​danielorbach
• feat: support configuring Ryuk verbose mode at config level (#2038) @​mdelapenya
• feat: create networks with random names (#1993) @​mdelapenya
• feat: add module to support Microsoft SQL Server (#1969) @​agosmou
• feat: exec multiplexed to return stderr (#1933) @​gutocondela
• feat: support for custom registry prefixes at the configuration level (#1928) @​mdelapenya
• Add username and password functions to mongodb (#1910) @​ugrkm
• feat: Allow the container working directory to be specified (#1899) @​fhke
• feat: expose a WithNetwork functional option (#1887) @​mdelapenya

🐛 Bug Fixes

• fix: remove docker.io from Ryuk image name (#2046) @​mdelapenya
• fix: fallback matching of registry authentication config (#1927) @​sermio-te
• fix(modules.kafka): Switch to MaxInt for 32-bit support (#1923) @​powersj
• fix(reaper): fix race condition when reusing reapers (#1904) @​lefinal
• Fix - respect ContainerCustomizer in neo4j module (#1903) @​fhke

📖 Documentation

• Add more content on how to use Exec function (#1970) @​danvergara
• docs: include MongoDB's username and password options into the docs (#1930) @​mdelapenya
• docs: add some Vault module examples (#1825) @​kuisathaverat

... (truncated)

Commits

• 8d0f53a chore: use new version (v0.27.0) in modules and examples
• c3a1834 chore: do not read config but instead pass the hub prefix to the prependHub m...
• 1bac302 fix: remove docker.io from Ryuk image name (#2046)
• 61a37cb adds gotestsum to install tools (#2043)
• 1c45958 Add neo4j license agreement customization options (#2036)
• 974afd9 chore: bump Ryuk to 0.6.0 (#2040)
• cb51b9b chore(deps): bump github.com/containerd/containerd from 1.7.7 to 1.7.11 (#2011)
• 9f68760 feat: support configuring Ryuk verbose mode at config level (#2038)
• 5faf6f4 chore: lookup exposed ports in the image from Config, not from ContainerConfi...
• a9f0ac8 chore(deps): bump golang.org/x/crypto to 0.17.0 in /modules (#2006)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Comparison is base (2cabdc6) 82.43% compared to head (a3f8f44) 82.43%.

Additional details and impacted files

@@           Coverage Diff           @@
##             main    #1258   +/-   ##
=======================================
  Coverage   82.43%   82.43%           
=======================================
  Files          72       72           
  Lines        5721     5721           
=======================================
  Hits         4716     4716           
  Misses       1005     1005           

Flag	Coverage Δ
acceptance	66.04% <ø> (ø)
generative	4.31% <ø> (ø)
integration	18.10% <ø> (ø)
unit	75.85% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.