Merge pull request #913 from docker/dependabot/npm_and_yarn/sigstore/verify-3.1.0

build(deps): bump @sigstore/verify from 3.0.0 to 3.1.0

package.json

@@ -59,7 +59,7 @@
     "@sigstore/bundle": "^4.0.0",
     "@sigstore/sign": "^4.1.0",
     "@sigstore/tuf": "^4.0.1",
-    "@sigstore/verify": "^3.0.0",
+    "@sigstore/verify": "^3.1.0",
     "async-retry": "^1.3.3",
     "csv-parse": "^6.1.0",
     "gunzip-maybe": "^1.4.2",

yarn.lock

@@ -1186,7 +1186,7 @@ __metadata:
     "@sigstore/rekor-types": "npm:^4.0.0"
     "@sigstore/sign": "npm:^4.1.0"
     "@sigstore/tuf": "npm:^4.0.1"
-    "@sigstore/verify": "npm:^3.0.0"
+    "@sigstore/verify": "npm:^3.1.0"
     "@types/gunzip-maybe": "npm:^1.4.3"
     "@types/he": "npm:^1.2.3"
     "@types/js-yaml": "npm:^4.0.9"
@@ -2240,13 +2240,6 @@ __metadata:
   languageName: node
   linkType: hard
 
-"@sigstore/core@npm:^3.0.0":
-  version: 3.0.0
-  resolution: "@sigstore/core@npm:3.0.0"
-  checksum: 10/b6dd1d0de2843d9fcad77f1052e2de795772f126b8dbcda887d36b5d6ea691f708dd64c13317ca98e1dd4987895098c4142c55a083f4e2cbcf1a1e75c95f650d
-  languageName: node
-  linkType: hard
-
 "@sigstore/core@npm:^3.1.0":
   version: 3.1.0
   resolution: "@sigstore/core@npm:3.1.0"
@@ -2292,14 +2285,14 @@ __metadata:
   languageName: node
   linkType: hard
 
-"@sigstore/verify@npm:^3.0.0":
-  version: 3.0.0
-  resolution: "@sigstore/verify@npm:3.0.0"
+"@sigstore/verify@npm:^3.1.0":
+  version: 3.1.0
+  resolution: "@sigstore/verify@npm:3.1.0"
   dependencies:
     "@sigstore/bundle": "npm:^4.0.0"
-    "@sigstore/core": "npm:^3.0.0"
+    "@sigstore/core": "npm:^3.1.0"
     "@sigstore/protobuf-specs": "npm:^0.5.0"
-  checksum: 10/c5b4891f42586a4c68fb22f127f19dd16b0bda0388ae8a40727cedd2443919006df3ec1ac4d6c3bd2786cff4c3f8d987135e87979262790e718bcc53e8a3a6c1
+  checksum: 10/c85713cc326236ef39608e4b061c1192306fd3edd7a1334237d5d53dbb132f04e3f9d3cfd4bb2d521bf0c95a9f98945a748c97ecb06e5f36cfd09488a0d3d73f
   languageName: node
   linkType: hard