build(deps): bump sigstore/cosign-installer from 3.1.2 to 3.2.0

[dependabot]

Bumps sigstore/cosign-installer from 3.1.2 to 3.2.0.

Release notes

Sourced from sigstore/cosign-installer's releases.

v3.2.0

Note: This release comes with a fix for CVE-2023-46737 described in this Github Security Advisory. Please upgrade to this release ASAP

see https://github.com/sigstore/cosign/releases/tag/v2.2.1

What's Changed

• Support the runner context of gitea act by @​josedev-union in sigstore/cosign-installer#147
• bump cosign to v2.2.1 by @​cpanato in sigstore/cosign-installer#148
• test with latest go version by @​bobcallaway in sigstore/cosign-installer#150

New Contributors

• @​josedev-union made their first contribution in sigstore/cosign-installer#147

Full Changelog: sigstore/cosign-installer@v3...v3.2.0

Commits

• 1fc5bd3 test with latest go version (#150)
• 9ce7d60 bump cosign to v2.2.1 (#148)
• 4b014e3 Support the runner context of gitea act (#147)
• 38ab09d Bump actions/checkout from 4.1.0 to 4.1.1 (#145)
• 9c520b9 Bump actions/checkout from 4.0.0 to 4.1.0 (#144)
• ef6a6b3 Bump actions/checkout from 3.6.0 to 4.0.0 (#143)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov]

Codecov Report

Merging #281 (5d3ed38) into main (252c5d2) will not change coverage.
Report is 1 commits behind head on main.
The diff coverage is n/a.

@@           Coverage Diff           @@
##             main     #281   +/-   ##
=======================================
  Coverage   59.70%   59.70%           
=======================================
  Files           7        7           
  Lines        1144     1144           
=======================================
  Hits          683      683           
  Misses        424      424           
  Partials       37       37           

📣 Codecov offers a browser extension for seamless coverage viewing on GitHub. Try it in Chrome or Firefox today!