v0.10.2

What's Changed

Not much! All dependency bumps.

• Bump golang.org/x/crypto from 0.21.0 to 0.22.0 by @dependabot in #490
• Bump imjasonh/setup-crane from 0.2 to 0.3 by @dependabot in #485
• Bump golang.org/x/oauth2 from 0.18.0 to 0.19.0 by @dependabot in #489
• Bump github.com/sigstore/rekor from 1.3.5 to 1.3.6 by @dependabot in #487
• Bump github.com/sigstore/protobuf-specs from 0.3.0 to 0.3.1 by @dependabot in #486
• Bump github.com/sigstore/fulcio from 1.4.4 to 1.4.5 by @dependabot in #488
• Remove local-user validation. by @wlynch in #491
• Bump github.com/sigstore/cosign/v2 from 2.2.3 to 2.2.4 by @dependabot in #492
• Bump sigstore/cosign-installer from 3.4.0 to 3.5.0 by @dependabot in #493
• Bump golang.org/x/net from 0.22.0 to 0.23.0 by @dependabot in #494
• Bump actions/checkout from 4.1.2 to 4.1.3 by @dependabot in #495
• e2e.yaml: Avoid non-versioned TUF metadata by @jku in #496
• Bump golangci/golangci-lint-action from 4.0.0 to 5.0.0 by @dependabot in #500
• Bump golang.org/x/oauth2 from 0.19.0 to 0.20.0 by @dependabot in #503
• Bump google.golang.org/protobuf from 1.33.0 to 1.34.0 by @dependabot in #502
• Bump actions/setup-go from 5.0.0 to 5.0.1 by @dependabot in #504
• Bump golangci/golangci-lint-action from 5.0.0 to 5.3.0 by @dependabot in #505
• Bump actions/checkout from 4.1.3 to 4.1.4 by @dependabot in #499
• Bump anchore/sbom-action from 0.15.10 to 0.15.11 by @dependabot in #498
• Bump goreleaser/goreleaser-action from 5.0.0 to 5.1.0 by @dependabot in #512
• Bump google.golang.org/protobuf from 1.34.0 to 1.34.1 by @dependabot in #508
• Bump golangci/golangci-lint-action from 5.3.0 to 6.0.1 by @dependabot in #511
• Bump actions/checkout from 4.1.4 to 4.1.5 by @dependabot in #510
• Bump github.com/sigstore/protobuf-specs from 0.3.1 to 0.3.2 by @dependabot in #509
• Bump golang.org/x/crypto from 0.22.0 to 0.23.0 by @dependabot in #507

New Contributors

• @jku made their first contribution in #496

Full Changelog: v0.10.1...v0.10.2