Skip to content

Fix replace with compliant image mediatype #4077

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Feb 25, 2025
Merged

Fix replace with compliant image mediatype #4077

merged 2 commits into from
Feb 25, 2025

Conversation

stgrace
Copy link
Contributor

@stgrace stgrace commented Feb 21, 2025

Fixes #4076

Summary

Bug in replacing attestation.

Release Note

NONE

Documentation

No docs

@stgrace stgrace requested a review from a team as a code owner February 21, 2025 15:18
@stgrace stgrace force-pushed the fix-replace branch 2 times, most recently from 1c9671a to 1334aea Compare February 21, 2025 15:23
@stgrace stgrace changed the title Fix replace with non compliant image mediatypes Fix replace with compliant image mediatypes Feb 21, 2025
@stgrace stgrace changed the title Fix replace with compliant image mediatypes Fix replace with compliant image mediatype Feb 21, 2025
@bobcallaway
Copy link
Member

Could you please write a test that ensures we don’t regress this in the future?

@stgrace
Copy link
Contributor Author

stgrace commented Feb 25, 2025

Hi @bobcallaway

Added a test for this specific issue. Let me know if you require any changes

@codecov Codecov
Copy link

codecov bot commented Feb 25, 2025
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 36.62%. Comparing base (2ef6022) to head (bf233d3).
Report is 331 commits behind head on main.

Additional details and impacted files 
@@            Coverage Diff             @@
##             main    #4077      +/-   ##
==========================================
- Coverage   40.10%   36.62%   -3.48%     
==========================================
  Files         155      210      +55     
  Lines       10044    13436    +3392     
==========================================
+ Hits         4028     4921     +893     
- Misses       5530     7897    +2367     
- Partials      486      618     +132

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@bobcallaway bobcallaway merged commit 8dd9e9b into sigstore:main Feb 25, 2025
29 checks passed
tmeijn pushed a commit to tmeijn/dotfiles that referenced this pull request May 10, 2025
@tmeijn
build(deps): update cosign to v2.5.0
8f8515a 
This MR contains the following updates:

| Package | Update | Change |
|---|---|---|
| [cosign](https://github.com/sigstore/cosign) | minor | `2.4.3` -> `2.5.0` |

MR created with the help of [el-capitano/tools/renovate-bot](https://gitlab.com/el-capitano/tools/renovate-bot).

**Proposed changes to behavior should be submitted there as MRs.**

---

### Release Notes

<details>
<summary>sigstore/cosign (cosign)</summary>

### [`v2.5.0`](https://github.com/sigstore/cosign/blob/HEAD/CHANGELOG.md#v250)

[Compare Source](sigstore/cosign@v2.4.3...v2.5.0)

v2.5.0 includes an implementation of the new bundle specification,
attesting and verifying OCI image attestations uploaded as OCI artifacts.
This feature is currently gated behind the `--new-bundle-format` flag
when running `cosign attest`.

#### Features

-   Add support for new bundle specification for attesting/verifying OCI image attestations ([#&#8203;3889](sigstore/cosign#3889))
-   Feat/non filename completions ([#&#8203;4115](sigstore/cosign#4115))
-   Add TSA certificate related flags and fields for cosign attest ([#&#8203;4079](sigstore/cosign#4079))

#### Fixes

-   cmd/cosign/cli: fix typo in ignoreTLogMessage ([#&#8203;4111](sigstore/cosign#4111))
-   Fix replace with compliant image mediatype ([#&#8203;4077](sigstore/cosign#4077))

#### Contributors

-   Bob Callaway
-   Carlos Tadeu Panato Junior
-   Cody Soyland
-   Dmitry Savintsev
-   Hayden B
-   Ramon Petgrave
-   Riccardo Schirone
-   Stef Graces
-   Ville Skyttä

</details>

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.

♻ **Rebasing**: Whenever MR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 **Ignore**: Close this MR and you won't be reminded about this update again.

---

 - [ ] <!-- rebase-check -->If you want to rebase/retry this MR, check this box

---

This MR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4yNTkuMCIsInVwZGF0ZWRJblZlciI6IjM5LjI1OS4wIiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJSZW5vdmF0ZSBCb3QiXX0=-->
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bobcallaway bobcallaway bobcallaway approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Wrong mediatype on attestation replace
2 participants
@stgrace @bobcallaway