bump sigstore==3.5.1

woodruffw · woodruffw · commit 335e8b00ae05 · 2024-10-28T14:29:41.000-04:00
Signed-off-by: William Woodruff &lt;william@trailofbits.com&gt;
diff --git a/requirements/runtime.in b/requirements/runtime.in
@@ -11,7 +11,7 @@ requests
 
 # NOTE: Used to generate attestations.
 pypi-attestations ~= 0.0.13
-sigstore ~= 3.4.0
+sigstore ~= 3.5.1
 
 # NOTE: Used to detect the PyPI package name from the distribution files
 packaging
diff --git a/requirements/runtime.txt b/requirements/runtime.txt
@@ -119,7 +119,7 @@ rich==13.7.1
     #   twine
 securesystemslib==1.0.0
     # via tuf
-sigstore==3.4.0
+sigstore==3.5.1
     # via
     #   -r runtime.in
     #   pypi-attestations
