bump predicate and actions/attest (#116 )

* actions/attest-build-provenance/predicate from 1.0.0 to 1.1.0 * actions/attest from 1.2.0 to 1.3.0 Signed-off-by: Brian DeHamer <bdehamer@github.com>
Bump braces from 3.0.2 to 3.0.3 (#115 )
2024-06-12 16:28:09 -07:00 · 2024-06-12 14:09:40 -07:00
3 changed files with 14 additions and 10 deletions
--- a/README.md
+++ b/README.md
@@ -36,7 +36,7 @@ attest:
   ```

   The `id-token` permission gives the action the ability to mint the OIDC token
-   permission is necessary to persist the attestation. The `attestations`
+   necessary to request a Sigstore signing certificate. The `attestations`
   permission is necessary to persist the attestation.

 1. Add the following to your workflow after your artifact has been built:
--- a/action.yml
+++ b/action.yml
@@ -44,9 +44,9 @@ outputs:
 runs:
  using: 'composite'
  steps:
-    - uses: actions/attest-build-provenance/predicate@db1dde0f270afe12073070ac7aa802958ae3ec04 # predicate@1.0.0
+    - uses: actions/attest-build-provenance/predicate@46e4ff8b824dc6ae13c8f92c8ba69907e2d39b4e # predicate@1.1.0
      id: generate-build-provenance-predicate
-    - uses: actions/attest@32795ed9174327efe1734fa6d09c9223658ef225 # v1.2.0
+    - uses: actions/attest@b24527d9cbfd6c27196c10f8dccbacaa2a1c53f2 # v1.3.0
      id: attest
      with:
        subject-path: ${{ inputs.subject-path }}
--- a/package-lock.json
+++ b/package-lock.json
@@ -2451,11 +2451,12 @@
      }
    },
    "node_modules/braces": {
-      "version": "3.0.2",
+      "version": "3.0.3",
+      "resolved": "https://registry.npmjs.org/braces/-/braces-3.0.3.tgz",
+      "integrity": "sha512-yQbXgO/OSZVD2IsiLlro+7Hf6Q18EJrKSEsdoMzKePKXct3gvD8oLcOQdIzGupr5Fj+EDe8gO/lxc1BzfMpxvA==",
      "dev": true,
-      "license": "MIT",
      "dependencies": {
-        "fill-range": "^7.0.1"
+        "fill-range": "^7.1.1"
      },
      "engines": {
        "node": ">=8"
@@ -3814,9 +3815,10 @@
      }
    },
    "node_modules/fill-range": {
-      "version": "7.0.1",
+      "version": "7.1.1",
+      "resolved": "https://registry.npmjs.org/fill-range/-/fill-range-7.1.1.tgz",
+      "integrity": "sha512-YsGpe3WHLK8ZYi4tWDg2Jy3ebRz2rXowDxnld4bkQB00cc/1Zw9AWnC0i9ztDJitivtQvaI9KaLyKrc+hBW0yg==",
      "dev": true,
-      "license": "MIT",
      "dependencies": {
        "to-regex-range": "^5.0.1"
      },
@@ -4595,8 +4597,9 @@
    },
    "node_modules/is-number": {
      "version": "7.0.0",
+      "resolved": "https://registry.npmjs.org/is-number/-/is-number-7.0.0.tgz",
+      "integrity": "sha512-41Cifkg6e8TylSpdtTpeLVMqvSBEVzTttHvERD741+pnZ8ANv0004MRL43QKPDlK9cGvNp6NZWZUBlbGXYxxng==",
      "dev": true,
-      "license": "MIT",
      "engines": {
        "node": ">=0.12.0"
      }
@@ -7693,8 +7696,9 @@
    },
    "node_modules/to-regex-range": {
      "version": "5.0.1",
+      "resolved": "https://registry.npmjs.org/to-regex-range/-/to-regex-range-5.0.1.tgz",
+      "integrity": "sha512-65P7iz6X5yEr1cwcgvQxbbIw7Uk3gOy5dIdtZ4rDveLqhrdJP+Li/Hx6tyK0NEb+2GCyneCMJiGqrADCSNk8sQ==",
      "dev": true,
-      "license": "MIT",
      "dependencies": {
        "is-number": "^7.0.0"
      },