chore(deps): bump sigstore/cosign-installer from 3.0.5 to 3.1.0

[dependabot]

Bumps sigstore/cosign-installer from 3.0.5 to 3.1.0.

Release notes

Sourced from sigstore/cosign-installer's releases.

v3.1.0

What's Changed

• update job to use latest action release by @​cpanato in sigstore/cosign-installer#130
• Update action example for keyless signing as xarg is not required by @​jbtrystram in sigstore/cosign-installer#132
• update examples by @​cpanato in sigstore/cosign-installer#133
• bump cosign to default to release v2.1.0 and update docs by @​cpanato in sigstore/cosign-installer#136

New Contributors

• @​jbtrystram made their first contribution in sigstore/cosign-installer#132

Full Changelog: sigstore/cosign-installer@v3.0.5...v3.1.0

Commits

• d130283 bump cosign to default to release v2.1.0 and update docs (#136)
• ef0e969 Bump actions/checkout from 3.5.2 to 3.5.3 (#134)
• 871cdc7 update examples (#133)
• 60bbdf4 Update action example for keyless signing as xarg is not required (#132)
• 1b9f7b6 update job to use latest action release (#130)
• 1a22e17 Bump actions/setup-go from 4.0.0 to 4.0.1 (#127)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[sonarcloud]

Kudos, SonarCloud Quality Gate passed!   

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

No Coverage information
No Duplication information

[codecov]

Codecov Report

Patch and project coverage have no change.

Comparison is base (cdf8d2b) 81.66% compared to head (9e62b0f) 81.66%.

Additional details and impacted files

@@           Coverage Diff           @@
##           master    #2858   +/-   ##
=======================================
  Coverage   81.66%   81.66%           
=======================================
  Files         133      133           
  Lines       20192    20192           
=======================================
  Hits        16490    16490           
  Misses       2849     2849           
  Partials      853      853           

☔ View full report in Codecov by Sentry.
📢 Do you have feedback about the report comment? Let us know in this issue.

[github-actions]

Go Published Test Results

1 989 tests   1 989 ✔️  2m 37s ⏱️
   118 suites         0 💤
       1 files           0 ❌

Results for commit 9e62b0f.

[github-actions]

E2E Tests Published Test Results

    4 files      4 suites   3h 36m 18s ⏱️
  96 tests   81 ✔️   5 💤 10 ❌
402 runs  366 ✔️ 20 💤 16 ❌

For more details on these failures, see this check.

Results for commit 9e62b0f.