build(deps): bump github.com/notaryproject/notation-core-go from 1.1.1-0.20240920045731-0786f51de737 to 1.2.0-rc.1

[dependabot]

Bumps github.com/notaryproject/notation-core-go from 1.1.1-0.20240920045731-0786f51de737 to 1.2.0-rc.1.

Release notes

Sourced from github.com/notaryproject/notation-core-go's releases.

v1.2.0-rc.1

Vote PASSED [+4 -0]: #231

What's Changed

• feat: CRL by @​JeyJeyGao in notaryproject/notation-core-go#214
• feat: CRL cache by @​JeyJeyGao in notaryproject/notation-core-go#216
• build(deps): bump golang.org/x/crypto from 0.26.0 to 0.27.0 by @​dependabot in notaryproject/notation-core-go#226
• test(signature): add two fuzz tests by @​AdamKorcz in notaryproject/notation-core-go#229

New Contributors

• @​AdamKorcz made their first contribution in notaryproject/notation-core-go#229

Full Changelog: notaryproject/notation-core-go@v1.1.0...v1.2.0-rc.1

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will merge this PR once it's up-to-date and CI passes on it, as requested by @priteshbandi.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 81.34%. Comparing base (4c2d986) to head (0360f2d).
Report is 1 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #466   +/-   ##
=======================================
  Coverage   81.34%   81.34%           
=======================================
  Files          34       34           
  Lines        2578     2578           
=======================================
  Hits         2097     2097           
  Misses        335      335           
  Partials      146      146           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[shizhMSFT]

LGTM

[priteshbandi]

@dependabot merge