Skip to content

chore: Bump github.com/sigstore/timestamp-authority/v2 from 2.0.3 to 2.0.6#2573

Merged
fseldow merged 2 commits into
mainfrom
dependabot/go_modules/github.com/sigstore/timestamp-authority/v2-2.0.6
Jun 24, 2026
Merged

chore: Bump github.com/sigstore/timestamp-authority/v2 from 2.0.3 to 2.0.6#2573
fseldow merged 2 commits into
mainfrom
dependabot/go_modules/github.com/sigstore/timestamp-authority/v2-2.0.6

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 4, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Bumps github.com/sigstore/timestamp-authority/v2 from 2.0.3 to 2.0.6.

Release notes

Sourced from github.com/sigstore/timestamp-authority/v2's releases.

v2.0.6

What's Changed

Full Changelog: sigstore/timestamp-authority@v2.0.5...v2.0.6

v2.0.5

What's Changed

This release updates the chi middleware to resolve a panic.

Full Changelog: sigstore/timestamp-authority@v2.0.4...v2.0.5

v2.0.4

Changelog

  • 5ddd4e6ad32117ae431eca6299ed9d29a6d33f5a update changelog for v2.0.4 (#1258)

What's Changed

Full Changelog: sigstore/timestamp-authority@v2.0.3...v2.0.4

Changelog

Sourced from github.com/sigstore/timestamp-authority/v2's changelog.

v2.0.5

This release updates the chi middleware to resolve a panic.

Bug Fixes

  • Upgrade chi middleware v4 -> v5 (#1307)

Docs

  • Update the semantics of the NTP monitoring so its clear in the README (#1276)
  • docs: note that CRL/OCSP checks are not performed (#1277)

Misc

  • Increase default HTTP idle timeout (#1287)

v2.0.4

Only contains dependency updates, but fixes #1252 due to breaking API change in sigstore/sigstore

Commits
  • 9583b61 Ensure correct certificate is used for TSA auth checks (GHSA-xm5m-wgh2-rrg3) ...
  • 7aab8b4 chore(deps): bump golang.org/x/net from 0.51.0 to 0.52.0 (#1322)
  • 48c7b2c chore(deps): bump codecov/codecov-action from 5.5.3 to 6.0.0 (#1327)
  • 49ca4e4 chore(deps): bump the gomod group with 2 updates (#1326)
  • 5812ba0 chore(deps): bump go.step.sm/crypto from 0.76.2 to 0.77.2 (#1328)
  • 6a334a8 chore(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 (#1329)
  • d799204 chore(deps): bump actions/upload-artifact in the actions group (#1332)
  • b9ce102 chore(deps): bump golang from 1.26.0 to 1.26.2 in the docker group (#1331)
  • 54bc0c1 chore(deps): bump the gomod group across 1 directory with 6 updates (#1324)
  • ffb897a chore(deps): bump the actions group across 1 directory with 4 updates (#1325)
  • Additional commits viewable in compare view

Copilot AI review requested due to automatic review settings June 4, 2026 08:17
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Jun 4, 2026
Copilot AI reviewed Jun 4, 2026

Copilot AI left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Copilot encountered an error and was unable to review this pull request. You can try again by re-requesting a review.

@dependabot dependabot Bot force-pushed the dependabot/go_modules/github.com/sigstore/timestamp-authority/v2-2.0.6 branch from e38d404 to b256cc7 Compare June 23, 2026 05:36
@dependabot
chore: Bump github.com/sigstore/timestamp-authority/v2
3f1b409 
Bumps [github.com/sigstore/timestamp-authority/v2](https://github.com/sigstore/timestamp-authority) from 2.0.3 to 2.0.6.
- [Release notes](https://github.com/sigstore/timestamp-authority/releases)
- [Changelog](https://github.com/sigstore/timestamp-authority/blob/main/CHANGELOG.md)
- [Commits](sigstore/timestamp-authority@v2.0.3...v2.0.6)

---
updated-dependencies:
- dependency-name: github.com/sigstore/timestamp-authority/v2
  dependency-version: 2.0.6
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/go_modules/github.com/sigstore/timestamp-authority/v2-2.0.6 branch from b256cc7 to 3f1b409 Compare June 24, 2026 04:09
@dependabot dependabot Bot requested a review from fseldow as a code owner June 24, 2026 04:09
@fseldow fseldow enabled auto-merge (squash) June 24, 2026 04:20
fseldow
fseldow approved these changes Jun 24, 2026
View reviewed changes

@fseldow fseldow left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/lgtm

@fseldow fseldow merged commit e4e6580 into main Jun 24, 2026
13 checks passed
@dependabot dependabot Bot deleted the dependabot/go_modules/github.com/sigstore/timestamp-authority/v2-2.0.6 branch June 24, 2026 04:21
@codecov

codecov Bot commented Jun 24, 2026

Copy link
Copy Markdown

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 77.62%. Comparing base (a741d46) to head (3bb25d5).
⚠️ Report is 1 commits behind head on main.

Additional details and impacted files 
@@           Coverage Diff           @@
##             main    #2573   +/-   ##
=======================================
  Coverage   77.62%   77.62%           
=======================================
  Files         105      105           
  Lines        4657     4657           
=======================================
  Hits         3615     3615           
  Misses        893      893           
  Partials      149      149

☔ View full report in Codecov by Harness.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments
@fseldow fseldow fseldow approved these changes
@akashsinghal akashsinghal Awaiting requested review from akashsinghal akashsinghal is a code owner
@binbin-li binbin-li Awaiting requested review from binbin-li binbin-li is a code owner
@jimmyraywv jimmyraywv Awaiting requested review from jimmyraywv jimmyraywv is a code owner
@luisdlp luisdlp Awaiting requested review from luisdlp luisdlp is a code owner
@susanshi susanshi Awaiting requested review from susanshi susanshi is a code owner
@toddysm toddysm Awaiting requested review from toddysm toddysm is a code owner

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update Go code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@fseldow