chore: Bump github.com/sigstore/sigstore from 1.7.3 to 1.7.4

[dependabot]

Bumps github.com/sigstore/sigstore from 1.7.3 to 1.7.4.

Release notes

Sourced from github.com/sigstore/sigstore's releases.

v1.7.4

What's Changed

• upgrade ci to run go1.21 and set min go version to 1.20 by @​cpanato in sigstore/sigstore#1372
• chore: Update the containers/image branch name by @​haiyuewa in sigstore/sigstore#1403
• Handles the error in kms/hashivault by @​PuneetPunamiya in sigstore/sigstore#1414
• update crypto/net/oauth2 dependencies by @​cpanato in sigstore/sigstore#1435
• ensure e2e tests run on new KMS modules by @​bobcallaway in sigstore/sigstore#1441

New Contributors

• @​haiyuewa made their first contribution in sigstore/sigstore#1403
• @​PuneetPunamiya made their first contribution in sigstore/sigstore#1414

Full Changelog: sigstore/sigstore@v1.7.3...v1.7.4

Commits

• f3aa8a8 build(deps): bump github.com/google/go-cmp from 0.5.9 to 0.6.0 (#1445)
• 75ad330 build(deps): bump google.golang.org/api in /pkg/signature/kms/gcp (#1452)
• 2b8e055 build(deps): bump github.com/go-rod/rod from 0.114.3 to 0.114.4 (#1453)
• 38b1a26 build(deps): bump github.com/aws/aws-sdk-go in /pkg/signature/kms/aws (#1454)
• cd2affd build(deps): bump github.com/aws/aws-sdk-go-v2/config (#1455)
• 5342e1a build(deps): bump github.com/aws/aws-sdk-go-v2 in /pkg/signature/kms/aws (#1456)
• b39de9d build(deps): bump golang.org/x/net from 0.16.0 to 0.17.0 (#1448)
• 4f2dd95 build(deps): bump golang.org/x/net from 0.14.0 to 0.17.0 in /test/fuzz (#1446)
• 899d652 build(deps): bump golang.org/x/net in /pkg/signature/kms/azure (#1447)
• 9aaaf9e build(deps): bump golang.org/x/net in /pkg/signature/kms/hashivault (#1449)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov]

Codecov Report

All modified lines are covered by tests ✅

Comparison is base (48b6dcf) 52.30% compared to head (891b0ec) 52.30%.

Additional details and impacted files

@@           Coverage Diff           @@
##             main    #1127   +/-   ##
=======================================
  Coverage   52.30%   52.30%           
=======================================
  Files         101      101           
  Lines        6305     6305           
=======================================
  Hits         3298     3298           
  Misses       2688     2688           
  Partials      319      319           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.