Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package gitsign for openSUSE:Factory checked in at 2026-01-30 18:27:00 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/gitsign (Old) and /work/SRC/openSUSE:Factory/.gitsign.new.1995 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "gitsign" Fri Jan 30 18:27:00 2026 rev:11 rq:1329945 version:0.14.0 Changes: -------- --- /work/SRC/openSUSE:Factory/gitsign/gitsign.changes 2025-12-17 18:37:31.993453845 +0100 +++ /work/SRC/openSUSE:Factory/.gitsign.new.1995/gitsign.changes 2026-01-30 18:27:12.693956047 +0100 @@ -1,0 +2,84 @@ +Fri Jan 30 06:25:36 UTC 2026 - Johannes Kastl <[email protected]> + +- Update to version 0.14.0: + * Redirect browser stdout/err to TTY out. (#757) + * (fix): gosec, staticcheck, errcheck fixes (#724) + * Bump actions/cache from 4.2.4 to 5.0.2 (#744) + * Bump golang.org/x/crypto from 0.46.0 to 0.47.0 (#746) + * Bump github.com/sigstore/rekor from 1.4.3 to 1.5.0 (#750) + * Bump actions/checkout from 5.0.0 to 6.0.2 (#754) + * Bump github.com/in-toto/in-toto-golang from 0.9.0 to 0.10.0 + (#753) + * Bump golangci/golangci-lint-action from 8.0.0 to 9.2.0 (#742) + * Bump github.com/theupdateframework/go-tuf/v2 from 2.3.0 to + 2.4.1 (#755) + * Expose predicate builder (#737) + * ci clean and general updates (#740) + * Bump github.com/sigstore/fulcio from 1.7.1 to 1.8.5 (#735) + * Bump actions/attest-build-provenance from 2.4.0 to 3.0.0 (#708) + * Bump the actions group across 1 directory with 3 updates (#732) + * Bump github.com/sigstore/cosign/v3 from 3.0.3 to 3.0.4 (#739) + * Update gitsign to latest versions of sigstore tooling (#733) + * Fix e2e ci (#738) + * Bump the actions group across 1 directory with 2 updates (#717) + * Bump actions/setup-go from 5.5.0 to 6.0.0 (#709) + * Bump golang.org/x/oauth2 from 0.30.0 to 0.31.0 (#711) + * Bump github.com/spf13/cobra from 1.9.1 to 1.10.1 (#713) + * Bump github.com/coreos/go-systemd/v22 from 22.5.0 to 22.6.0 + (#707) + * Bump google.golang.org/protobuf from 1.36.7 to 1.36.8 in the + gomod group (#706) + * Bump github.com/go-viper/mapstructure/v2 in the go_modules + group (#705) + * Bump the actions group with 2 updates (#703) + * Bump actions/checkout from 4.2.2 to 5.0.0 (#704) + * Bump the actions group with 2 updates (#700) + * Bump google.golang.org/protobuf from 1.36.6 to 1.36.7 in the + gomod group (#701) + * Bump golang.org/x/crypto from 0.40.0 to 0.41.0 (#702) + * Bump github.com/secure-systems-lab/go-securesystemslib (#699) + * Bump github.com/sigstore/rekor from 1.3.10 to 1.4.0 (#698) + * Bump github.com/coreos/go-oidc/v3 from 3.14.1 to 3.15.0 (#697) + * Bump anchore/sbom-action from 0.20.2 to 0.20.4 in the actions + group (#696) + * Bump the gomod group with 2 updates (#695) + * Bump sigstore/cosign-installer from 3.9.1 to 3.9.2 in the + actions group (#694) + * Bump github.com/sigstore/protobuf-specs from 0.4.3 to 0.5.0 + (#691) + * Bump golang.org/x/crypto from 0.39.0 to 0.40.0 (#692) + * Bump anchore/sbom-action from 0.20.1 to 0.20.2 in the actions + group (#690) + * Bump sigstore/cosign-installer from 3.9.0 to 3.9.1 in the + actions group (#689) + * Bump github.com/go-viper/mapstructure/v2 in the go_modules + group (#688) + * Bump sigstore/cosign-installer from 3.8.2 to 3.9.0 in the + actions group (#686) + * update cosign (#685) + * Bump the gomod group with 3 updates (#684) + * Bump the actions group with 2 updates (#683) + * Bump github.com/go-git/go-git/v5 in the gomod group (#681) + * Bump golang.org/x/crypto from 0.38.0 to 0.39.0 (#682) + * Bump github.com/sigstore/protobuf-specs in the gomod group + (#679) + * Bump anchore/sbom-action from 0.19.0 to 0.20.0 in the actions + group (#680) + * Bump golang.org/x/crypto from 0.37.0 to 0.38.0 (#676) + * Bump golang.org/x/oauth2 from 0.29.0 to 0.30.0 (#677) + * Bump actions/setup-go from 5.4.0 to 5.5.0 in the actions group + (#678) + * Bump golangci/golangci-lint-action from 7.0.0 to 8.0.0 (#674) + * Bump actions/attest-build-provenance in the actions group + (#673) + * Bump the gomod group across 1 directory with 2 updates (#672) + * Bump github.com/sigstore/fulcio from 1.6.6 to 1.7.0 (#666) + * Bump the actions group with 2 updates (#670) + * Bump github.com/go-git/go-git/v5 from 5.14.0 to 5.16.0 (#668) + * Bump golangci/golangci-lint-action from 6.5.2 to 7.0.0 (#662) + * Bump github.com/sigstore/cosign/v2 from 2.4.3 to 2.5.0 (#669) + * Bump golang.org/x/oauth2 from 0.28.0 to 0.29.0 (#667) + * Bump github.com/coreos/go-oidc/v3 from 3.12.0 to 3.13.0 (#652) + * Bump the gomod group across 1 directory with 5 updates (#665) + +------------------------------------------------------------------- Old: ---- gitsign-0.13.0.obscpio New: ---- gitsign-0.14.0.obscpio ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ gitsign.spec ++++++ --- /var/tmp/diff_new_pack.U04rE9/_old 2026-01-30 18:27:15.790086028 +0100 +++ /var/tmp/diff_new_pack.U04rE9/_new 2026-01-30 18:27:15.798086364 +0100 @@ -1,7 +1,7 @@ # # spec file for package gitsign # -# Copyright (c) 2025 SUSE LLC and contributors +# Copyright (c) 2026 SUSE LLC and contributors # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -17,7 +17,7 @@ Name: gitsign -Version: 0.13.0 +Version: 0.14.0 Release: 0 Summary: Keyless Git signing using Sigstore License: Apache-2.0 @@ -26,7 +26,7 @@ Source1: vendor.tar.gz Source2: gitsign-credential-cache.service Source3: gitsign-credential-cache.socket -BuildRequires: golang(API) >= 1.23 +BuildRequires: go1.25 >= 1.25.5 %description Keyless Git signing with Sigstore! ++++++ _service ++++++ --- /var/tmp/diff_new_pack.U04rE9/_old 2026-01-30 18:27:16.110099463 +0100 +++ /var/tmp/diff_new_pack.U04rE9/_new 2026-01-30 18:27:16.142100807 +0100 @@ -3,7 +3,7 @@ <param name="url">https://github.com/sigstore/gitsign</param> <param name="scm">git</param> <param name="exclude">.git</param> - <param name="revision">v0.13.0</param> + <param name="revision">v0.14.0</param> <param name="versionformat">@PARENT_TAG@</param> <param name="versionrewrite-pattern">v(.*)</param> <param name="changesgenerate">enable</param> ++++++ _servicedata ++++++ --- /var/tmp/diff_new_pack.U04rE9/_old 2026-01-30 18:27:16.330108699 +0100 +++ /var/tmp/diff_new_pack.U04rE9/_new 2026-01-30 18:27:16.374110546 +0100 @@ -1,6 +1,6 @@ <servicedata> <service name="tar_scm"> <param name="url">https://github.com/sigstore/gitsign</param> - <param name="changesrevision">b17948db1402b33caa005637f40e8df9eab56daf</param></service></servicedata> + <param name="changesrevision">dd51a25b4f9fa103ca6f5cdca4183fa15cb3e627</param></service></servicedata> (No newline at EOF) ++++++ gitsign-0.13.0.obscpio -> gitsign-0.14.0.obscpio ++++++ ++++ 4101 lines of diff (skipped) ++++++ gitsign.obsinfo ++++++ --- /var/tmp/diff_new_pack.U04rE9/_old 2026-01-30 18:27:17.442155386 +0100 +++ /var/tmp/diff_new_pack.U04rE9/_new 2026-01-30 18:27:17.470156561 +0100 @@ -1,5 +1,5 @@ name: gitsign -version: 0.13.0 -mtime: 1743436627 -commit: b17948db1402b33caa005637f40e8df9eab56daf +version: 0.14.0 +mtime: 1769534156 +commit: dd51a25b4f9fa103ca6f5cdca4183fa15cb3e627 ++++++ vendor.tar.gz ++++++ /work/SRC/openSUSE:Factory/gitsign/vendor.tar.gz /work/SRC/openSUSE:Factory/.gitsign.new.1995/vendor.tar.gz differ: char 5, line 1
