From 37d93799507b94cf1c1885efd7278d52a0fb806a Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 2 Jul 2026 08:14:02 +0000 Subject: [PATCH] chore(deps): Bump sigstore from 4.1.0 to 4.1.1 Bumps [sigstore](https://github.com/sigstore/sigstore-js) from 4.1.0 to 4.1.1. - [Release notes](https://github.com/sigstore/sigstore-js/releases) - [Commits](https://github.com/sigstore/sigstore-js/compare/sigstore@4.1.0...sigstore@4.1.1) --- updated-dependencies: - dependency-name: sigstore dependency-version: 4.1.1 dependency-type: indirect ... Signed-off-by: dependabot[bot] --- yarn.lock | 44 ++++++++++---------------------------------- 1 file changed, 10 insertions(+), 34 deletions(-) diff --git a/yarn.lock b/yarn.lock index f304cb1..aafc356 100644 --- a/yarn.lock +++ b/yarn.lock @@ -1676,7 +1676,7 @@ __metadata: languageName: node linkType: hard -"@sigstore/core@npm:^3.1.0, @sigstore/core@npm:^3.2.0, @sigstore/core@npm:^3.2.1": +"@sigstore/core@npm:^3.2.0, @sigstore/core@npm:^3.2.1": version: 3.2.1 resolution: "@sigstore/core@npm:3.2.1" checksum: 10/2f6c1ced55f8ed3f7fc705a668eb95db9471511dfb1f054927822bf97a051dd62228ecf6a9f1932d240c2c4ae69a3b5066550789e5ad8f4257839a4370e5a120 @@ -1690,20 +1690,6 @@ __metadata: languageName: node linkType: hard -"@sigstore/sign@npm:^4.1.0": - version: 4.1.0 - resolution: "@sigstore/sign@npm:4.1.0" - dependencies: - "@sigstore/bundle": "npm:^4.0.0" - "@sigstore/core": "npm:^3.1.0" - "@sigstore/protobuf-specs": "npm:^0.5.0" - make-fetch-happen: "npm:^15.0.3" - proc-log: "npm:^6.1.0" - promise-retry: "npm:^2.0.1" - checksum: 10/e5441d4cacf0f203f329e96bb7a3ca77682cfdf90d6448ad368344056fd8d55c01742e2b636545d55364490a87988f767f2b23168b2d9cc52ef3d8fe9e9496aa - languageName: node - linkType: hard - "@sigstore/sign@npm:^4.1.1": version: 4.1.1 resolution: "@sigstore/sign@npm:4.1.1" @@ -1718,16 +1704,6 @@ __metadata: languageName: node linkType: hard -"@sigstore/tuf@npm:^4.0.1": - version: 4.0.1 - resolution: "@sigstore/tuf@npm:4.0.1" - dependencies: - "@sigstore/protobuf-specs": "npm:^0.5.0" - tuf-js: "npm:^4.1.0" - checksum: 10/1a9725aa95eba55badf24442fe8a71c6d68f8b7d17a6b2a5e4b5590117f0181881b3485cfa57ea375b7c3a38421dbffdfcbe86e6623d903e17e3a8359837e268 - languageName: node - linkType: hard - "@sigstore/tuf@npm:^4.0.2": version: 4.0.2 resolution: "@sigstore/tuf@npm:4.0.2" @@ -1738,7 +1714,7 @@ __metadata: languageName: node linkType: hard -"@sigstore/verify@npm:^3.1.0, @sigstore/verify@npm:^3.1.1": +"@sigstore/verify@npm:^3.1.1": version: 3.1.1 resolution: "@sigstore/verify@npm:3.1.1" dependencies: @@ -4329,7 +4305,7 @@ __metadata: languageName: node linkType: hard -"make-fetch-happen@npm:^15.0.1, make-fetch-happen@npm:^15.0.3": +"make-fetch-happen@npm:^15.0.1": version: 15.0.4 resolution: "make-fetch-happen@npm:15.0.4" dependencies: @@ -5451,16 +5427,16 @@ __metadata: linkType: hard "sigstore@npm:^4.0.0": - version: 4.1.0 - resolution: "sigstore@npm:4.1.0" + version: 4.1.1 + resolution: "sigstore@npm:4.1.1" dependencies: "@sigstore/bundle": "npm:^4.0.0" - "@sigstore/core": "npm:^3.1.0" + "@sigstore/core": "npm:^3.2.1" "@sigstore/protobuf-specs": "npm:^0.5.0" - "@sigstore/sign": "npm:^4.1.0" - "@sigstore/tuf": "npm:^4.0.1" - "@sigstore/verify": "npm:^3.1.0" - checksum: 10/7312eed22f82bebcd80a897a163e220bb1df2c084c308d17fb431ff03ef28cf20e3b17312fd8024793dcefa27e794c31174d604a28fc85672a9d6d7f34bbd4a6 + "@sigstore/sign": "npm:^4.1.1" + "@sigstore/tuf": "npm:^4.0.2" + "@sigstore/verify": "npm:^3.1.1" + checksum: 10/8fb38bbdc3ee1e79b3f19e0015ebf35b7d7f890673722f182960ec88f02a52f2f631fc983e7f8bafa3a37653a760ddc00277721a8f9159ee6ee311159ca3dfbe languageName: node linkType: hard