Bump the all group in /acceptance with 5 updates

[dependabot]

Bumps the all group in /acceptance with 5 updates:

Package	From	To
cuelang.org/go	0.10.1	0.11.0
github.com/enterprise-contract/enterprise-contract-controller/api	0.1.66	0.1.68
github.com/sigstore/rekor	1.3.6	1.3.7
github.com/sigstore/sigstore	1.8.9	1.8.10
github.com/stretchr/testify	1.9.0	1.10.0

Updates cuelang.org/go from 0.10.1 to 0.11.0

Updates github.com/enterprise-contract/enterprise-contract-controller/api from 0.1.66 to 0.1.68

Release notes

Sourced from github.com/enterprise-contract/enterprise-contract-controller/api's releases.

API Release api/v0.1.68

What's Changed

• Proper golang version in publish-schema workflow by @​zregvart in enterprise-contract/enterprise-contract-controller#432

Full Changelog: enterprise-contract/enterprise-contract-controller@api/v0.1.67...api/v0.1.68

API Release api/v0.1.67

What's Changed

• Bump k8s.io/apimachinery from 0.29.9 to 0.29.10 in /api by @​dependabot in enterprise-contract/enterprise-contract-controller#417
• Bump k8s.io/apiextensions-apiserver from 0.29.9 to 0.29.10 in /api by @​dependabot in enterprise-contract/enterprise-contract-controller#416
• Bump github.com/onsi/gomega from 1.34.2 to 1.35.1 by @​dependabot in enterprise-contract/enterprise-contract-controller#425
• Bump softprops/action-gh-release from 2.0.8 to 2.0.9 by @​dependabot in enterprise-contract/enterprise-contract-controller#424
• Bump github/codeql-action from 3.27.0 to 3.27.1 by @​dependabot in enterprise-contract/enterprise-contract-controller#427
• Bump softprops/action-gh-release from 2.0.9 to 2.1.0 by @​dependabot in enterprise-contract/enterprise-contract-controller#429
• Bump github/codeql-action from 3.27.1 to 3.27.4 by @​dependabot in enterprise-contract/enterprise-contract-controller#430
• Bump codecov/codecov-action from 4.6.0 to 5.0.2 by @​dependabot in enterprise-contract/enterprise-contract-controller#431
• Declare volatileConfig as a slice instead of map by @​zregvart in enterprise-contract/enterprise-contract-controller#428

Full Changelog: enterprise-contract/enterprise-contract-controller@api/v0.1.66...api/v0.1.67

Commits

• 88e97ff Merge pull request #432 from zregvart/pr/golang-version-in-schema-workflow
• e01c32b Proper golang version in publish-schema workflow
• 7b6dc49 Merge pull request #428 from zregvart/issue/423
• 58d34a4 Merge pull request #431 from enterprise-contract/dependabot/github_actions/co...
• 12817cd Merge pull request #430 from enterprise-contract/dependabot/github_actions/gi...
• 299e720 Merge pull request #429 from enterprise-contract/dependabot/github_actions/so...
• 2c2e609 Bump codecov/codecov-action from 4.6.0 to 5.0.2
• 9823cbf Bump github/codeql-action from 3.27.1 to 3.27.4
• 109029e Bump softprops/action-gh-release from 2.0.9 to 2.1.0
• ac7068b Declare volatileConfig as a slice instead of map
• Additional commits viewable in compare view

Updates github.com/sigstore/rekor from 1.3.6 to 1.3.7

Release notes

Sourced from github.com/sigstore/rekor's releases.

v1.3.7

Changelog

Please see https://github.com/sigstore/rekor/blob/main/CHANGELOG.md for changes included in this release.

Thanks for all contributors!

Changelog

Sourced from github.com/sigstore/rekor's changelog.

v1.3.7

New Features

• log request body on 500 error to aid debugging (#2283)
• Add support for signing with Tink keyset (#2228)
• Add public key hash check in Signed Note verification (#2214)
• update Trillian TLS configuration (#2202)
• Add TLS support for Trillian server (#2164)
• Replace docker-compose with plugin if available (#2153)
• Add flags to backfill script (#2146)
• Unset DisableKeepalive for backfill HTTP client (#2137)
• Add script to delete indexes from Redis (#2120)
• Run CREATE statement in backfill script (#2109)
• Add MySQL support to backfill script (#2081)
• Run e2e tests on mysql and redis index backends (#2079)

Bug Fixes

• remove unneeded value in log message (#2282)
• Add error message when computing consistency proof (#2278)
• fix validation error handling on API (#2217)
• fix error in pretty-printed inclusion proof from verify subcommand (#2210)
• Fix index scripts (#2203)
• fix failing sharding test
• Better error handling in backfill script (#2148)
• Batch entries in cleanup script (#2158)
• Add missing workflow for index cleanup test (#2121)
• hashedrekord: fix schema $id (#2092)

Contributors

• Aditya Sirish
• Bob Callaway
• Colleen Murphy
• cpanato
• Firas Ghanmi
• Hayden B
• Hojoung (Brian) Jang
• William Woodruff

Commits

• 4caadbc changelog for v1.3.7 (#2284)
• 9fddf00 log request body on 500 error to aid debugging (#2283)
• 92584b7 remove unneeded value in log message (#2282)
• 56ea4b5 Add error message when computing consistency proof (#2278)
• 3eb84f9 build(deps): Bump the all group with 2 updates
• 28aa29c build(deps): Bump google/cloud-sdk from 500.0.0 to 501.0.0
• d7e2d1d build(deps): Bump codecov/codecov-action from 4.6.0 to 5.0.2
• a018e78 build(deps): Bump google.golang.org/api from 0.205.0 to 0.206.0
• 38d5f67 build(deps): Bump golang from d56c3e0 to 73f06be
• ded5cd1 build(deps): Bump google.golang.org/api from 0.204.0 to 0.205.0
• Additional commits viewable in compare view

Updates github.com/sigstore/sigstore from 1.8.9 to 1.8.10

Release notes

Sourced from github.com/sigstore/sigstore's releases.

v1.8.10

What's Changed

• fix(kms): fix CreateKey may panic when using GCP KMS by @​mozillazg in sigstore/sigstore#1829
• update to go1.22.7 and ci job by @​cpanato in sigstore/sigstore#1847
• Mark TUF client as deprecated by @​haydentherapper in sigstore/sigstore#1858
• bump to go 1.22.8 by @​cpanato in sigstore/sigstore#1865

and several dependencies updates

New Contributors

• @​mozillazg made their first contribution in sigstore/sigstore#1829

Full Changelog: sigstore/sigstore@v1.8.9...v1.8.10

Commits

• 305ff9e bump to go 1.22.8 (#1865)
• d88a949 build(deps): Bump github.com/Azure/azure-sdk-for-go/sdk/azidentity (#1860)
• cfde863 build(deps): Bump the gomod group across 1 directory with 3 updates (#1859)
• e928a84 build(deps): Bump github.com/Azure/azure-sdk-for-go/sdk/azcore (#1861)
• 66f05db build(deps): Bump google.golang.org/api in /pkg/signature/kms/gcp (#1862)
• f0978ed build(deps): Bump the all group with 2 updates (#1863)
• 9398b12 build(deps): Bump the all group in /test/e2e with 2 updates (#1864)
• bd8ee68 Mark TUF client as deprecated (#1858)
• c59dfa0 build(deps): Bump golang.org/x/crypto from 0.25.0 to 0.28.0 (#1852)
• bde3e53 build(deps): Bump golang.org/x/term from 0.22.0 to 0.25.0 (#1851)
• Additional commits viewable in compare view

Updates github.com/stretchr/testify from 1.9.0 to 1.10.0

Release notes

Sourced from github.com/stretchr/testify's releases.

v1.10.0

What's Changed

Functional Changes

• Add PanicAssertionFunc by @​fahimbagar in stretchr/testify#1337
• assert: deprecate CompareType by @​dolmen in stretchr/testify#1566
• assert: make YAML dependency pluggable via build tags by @​dolmen in stretchr/testify#1579
• assert: new assertion NotElementsMatch by @​hendrywiranto in stretchr/testify#1600
• mock: in order mock calls by @​ReyOrtiz in stretchr/testify#1637
• Add assertion for NotErrorAs by @​palsivertsen in stretchr/testify#1129
• Record Return Arguments of a Call by @​jayd3e in stretchr/testify#1636
• assert.EqualExportedValues: accepts everything by @​redachl in stretchr/testify#1586

Fixes

• assert: make tHelper a type alias by @​dolmen in stretchr/testify#1562
• Do not get argument again unnecessarily in Arguments.Error() by @​TomWright in stretchr/testify#820
• Fix time.Time compare by @​myxo in stretchr/testify#1582
• assert.Regexp: handle []byte array properly by @​kevinburkesegment in stretchr/testify#1587
• assert: collect.FailNow() should not panic by @​marshall-lee in stretchr/testify#1481
• mock: simplify implementation of FunctionalOptions by @​dolmen in stretchr/testify#1571
• mock: caller information for unexpected method call by @​spirin in stretchr/testify#1644
• suite: fix test failures by @​stevenh in stretchr/testify#1421
• Fix issue #1662 (comparing infs should fail) by @​ybrustin in stretchr/testify#1663
• NotSame should fail if args are not pointers #1661 by @​sikehish in stretchr/testify#1664
• Increase timeouts in Test_Mock_Called_blocks to reduce flakiness in CI by @​sikehish in stretchr/testify#1667
• fix: compare functional option names for indirect calls by @​arjun-1 in stretchr/testify#1626

Documantation, Build & CI

• .gitignore: ignore "go test -c" binaries by @​dolmen in stretchr/testify#1565
• mock: improve doc by @​dolmen in stretchr/testify#1570
• mock: fix FunctionalOptions docs by @​snirye in stretchr/testify#1433
• README: link out to the excellent testifylint by @​brackendawson in stretchr/testify#1568
• assert: fix typo in comment by @​JohnEndson in stretchr/testify#1580
• Correct the EventuallyWithT and EventuallyWithTf example by @​JonCrowther in stretchr/testify#1588
• CI: bump softprops/action-gh-release from 1 to 2 by @​dependabot in stretchr/testify#1575
• mock: document more alternatives to deprecated AnythingOfTypeArgument by @​dolmen in stretchr/testify#1569
• assert: Correctly document EqualValues behavior by @​brackendawson in stretchr/testify#1593
• fix: grammar in godoc by @​miparnisari in stretchr/testify#1607
• .github/workflows: Run tests for Go 1.22 by @​HaraldNordgren in stretchr/testify#1629
• Document suite's lack of support for t.Parallel by @​brackendawson in stretchr/testify#1645
• assert: fix typos in comments by @​alexandear in stretchr/testify#1650
• mock: fix doc comment for NotBefore by @​alexandear in stretchr/testify#1651
• Generate better comments for require package by @​Neokil in stretchr/testify#1610
• README: replace Testify V2 notice with @​dolmen's V2 manifesto by @​hendrywiranto in stretchr/testify#1518

New Contributors

• @​fahimbagar made their first contribution in stretchr/testify#1337
• @​TomWright made their first contribution in stretchr/testify#820
• @​snirye made their first contribution in stretchr/testify#1433
• @​myxo made their first contribution in stretchr/testify#1582
• @​JohnEndson made their first contribution in stretchr/testify#1580

... (truncated)

Commits

• 89cbdd9 Merge pull request #1626 from arjun-1/fix-functional-options-diff-indirect-calls
• 07bac60 Merge pull request #1667 from sikehish/flaky
• 716de8d Increase timeouts in Test_Mock_Called_blocks to reduce flakiness in CI
• 118fb83 NotSame should fail if args are not pointers #1661 (#1664)
• 7d99b2b attempt 2
• 05f87c0 more similar
• ea7129e better fmt
• a1b9c9e Merge pull request #1663 from ybrustin/master
• 8302de9 Merge branch 'master' into master
• 89352f7 Merge pull request #1518 from hendrywiranto/adjust-readme-remove-v2
• Additional commits viewable in compare view

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
github.com/sigstore/sigstore	[< 1.9, > 1.8.9]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 71.22%. Comparing base (98a03a0) to head (e30968b).
Report is 2 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main    #2188   +/-   ##
=======================================
  Coverage   71.22%   71.22%           
=======================================
  Files          88       88           
  Lines        7490     7490           
=======================================
  Hits         5335     5335           
  Misses       2155     2155           

Flag	Coverage Δ
generative	71.22% <ø> (ø)
integration	?
unit	71.22% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

[zregvart]

@dependabot ignore github.com/sigstore/rekor

[dependabot]

OK, I won't notify you about github.com/sigstore/rekor again, unless you unignore it.

[zregvart]

@dependabot recreate

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.