v1.0.0
·
124 commits
to main
since this release
v1.0.0
stefanprodan
Stefan Prodan
This tag was signed with the committer’s verified signature.
stefanprodan
Stefan Prodan
What's Changed
- Update dependencies by @stefanprodan in #39
- build: convert ::set-output to $GITHUB_OUTPUT by @hiddeco in #40
- Update Go to 1.20 by @hiddeco in #42
- Update dependencies by @hiddeco in #44
- Update GitHub Actions workflows by @hiddeco in #43
- Bump actions/cache from 3.2.6 to 3.3.0 by @dependabot in #46
- Bump docker/setup-buildx-action from 2.4.1 to 2.5.0 by @dependabot in #45
- Bump actions/checkout from 3.3.0 to 3.4.0 by @dependabot in #48
- Bump anchore/sbom-action from 0.13.3 to 0.13.4 by @dependabot in #51
- Bump actions/checkout from 3.4.0 to 3.5.0 by @dependabot in #50
- Bump actions/cache from 3.3.0 to 3.3.1 by @dependabot in #47
- Bump anchore/sbom-action from 0.13.4 to 0.14.1 by @dependabot in #53
- Update dependencies and GitRepository to v1 by @makkes in #52
- Bump sigstore/cosign-installer from 3.0.1 to 3.0.2 by @dependabot in #54
- Bump actions/checkout from 3.5.0 to 3.5.2 by @dependabot in #55
- Bump docker/metadata-action from 4.3.0 to 4.4.0 by @dependabot in #56
- Bump sigstore/cosign-installer from 3.0.2 to 3.0.3 by @dependabot in #57
- Bump anchore/sbom-action from 0.14.1 to 0.14.2 by @dependabot in #58
- Update Alpine to 3.18 by @hiddeco in #59
- Bump actions/setup-go from 3.5.0 to 4.0.1 by @dependabot in #60
- Bump sigstore/cosign-installer from 3.0.3 to 3.0.5 by @dependabot in #61
- Bump docker/setup-qemu-action from 2.1.0 to 2.2.0 by @dependabot in #66
- Bump docker/metadata-action from 4.4.0 to 4.5.0 by @dependabot in #65
- Bump docker/setup-buildx-action from 2.5.0 to 2.6.0 by @dependabot in #64
- Bump actions/checkout from 3.5.2 to 3.5.3 by @dependabot in #63
- Bump docker/build-push-action from 4.0.0 to 4.1.0 by @dependabot in #62
- Bump docker/build-push-action from 4.1.0 to 4.1.1 by @dependabot in #71
- Bump docker/metadata-action from 4.5.0 to 4.6.0 by @dependabot in #70
- Bump goreleaser/goreleaser-action from 4.2.0 to 4.3.0 by @dependabot in #69
- Bump docker/setup-buildx-action from 2.6.0 to 2.7.0 by @dependabot in #68
- Bump docker/login-action from 2.1.0 to 2.2.0 by @dependabot in #67
- Add SLSA3 generator to release workflow by @stefanprodan in #72
- Generate provenance for container images by @stefanprodan in #73
- Bump anchore/sbom-action from 0.14.2 to 0.14.3 by @dependabot in #75
- Bump sigstore/cosign-installer from 3.0.5 to 3.1.0 by @dependabot in #74
- Add check for PGP signed tags to release workflow by @stefanprodan in #76
- Update Source API to RC.5 by @stefanprodan in #77
- Verify signed release by @stefanprodan in #78
- Verify signed tag by @stefanprodan in #79
- Verify signed tag by @stefanprodan in #80
- Bump sigstore/cosign-installer from 3.1.0 to 3.1.1 by @dependabot in #82
- Bump docker/setup-buildx-action from 2.7.0 to 2.8.0 by @dependabot in #81
- Update dependencies (Flux 2.0 GA) by @stefanprodan in #83
New Contributors
- @hiddeco made their first contribution in #40
- @dependabot made their first contribution in #46
- @makkes made their first contribution in #52
Full Changelog: v0.14.0...v1.0.0
Container images
docker.io/fluxcd/source-watcher:v1.0.0ghcr.io/fluxcd/source-watcher:v1.0.0
Supported architectures: linux/amd64, linux/arm64 and linux/arm/v7.
The container images are built on GitHub hosted runners and are signed with cosign and GitHub OIDC.
To verify the images and their provenance (SLSA level 3), please see the security documentation.
Contributors
makkes, stefanprodan, and 2 other contributors