Bump github.com/in-toto/attestation from 1.1.2 to 1.2.0

[dependabot]

Bumps github.com/in-toto/attestation from 1.1.2 to 1.2.0.

Release notes

Sourced from github.com/in-toto/attestation's releases.

v1.2.0

Core Attestation Framework Spec Changes

• Ensure the Envelope spec meets ITE-5 by @​marcelamelara in in-toto/attestation#431
• Add predicate type to the allowed media types for the envelope's payload type by @​mdeicas in in-toto/attestation#473
• Clarify that non-cryptographic digests may use custom value encoding by @​marcelamelara in in-toto/attestation#517

New / Updated Predicates

• New Simple Verification Result (SVR) Predicate by @​arewm in in-toto/attestation#470
• Update Release Predicate to v0.2 by @ bdehamer in in-toto/attestation#495
• New SPDX 3 Predicate by @​JPEWdev in in-toto/attestation#508

Language Bindings Changes

• Support validation of Cosign OCI statements with type https://in-toto.io/Statement/v0.1 by @​alenon in in-toto/attestation#464
• Add Rust bindings by @​marcelamelara in in-toto/attestation#468
• SVR proto definitions by @​puerco in in-toto/attestation#519

Other Changes

• Update link to URL redirects list by @​mdeicas in in-toto/attestation#471
• docs: fix typo in README.md by @​tarilabs in in-toto/attestation#472
• Upgrade Go in make-protos.yml@setup-go to be consistent w/ go.mod by @​trishankatdatadog in in-toto/attestation#488
• Bump Go version in CI tests by @​marcelamelara in in-toto/attestation#491
• Update attestation maintainers by @​marcelamelara in in-toto/attestation#516 and in-toto/attestation#536
• Add SVR to the list of predicates and fix some issues in the list by @​lcarva in in-toto/attestation#537

New Contributors

• @​tarilabs made their first contribution in in-toto/attestation#472
• @​alenon made their first contribution in in-toto/attestation#464
• @​bdehamer made their first contribution in in-toto/attestation#495
• @​JPEWdev made their first contribution in in-toto/attestation#508
• @​lcarva made their first contribution in in-toto/attestation#537

Full Changelog: in-toto/attestation@v1.1.2...v1.2.0

Commits

• df02077 Add SVR to the list of predicates and fix some issues in the list (#537)
• cd3e5c7 Merge pull request #536 from marcelamelara/msm-update-maintainers
• b31d198 Apply suggestions from code review
• 4527976 Add Aditya as maintainer, move Mikhail and Tom to emeritus
• 7bfb269 Ensure the Envelope spec meets ITE-5 (#431)
• ad76f68 Clarify that non-cryptographic digests may use custom value encoding (#517)
• 071e175 Bump actions/setup-node from 6.2.0 to 6.3.0 (#535)
• cad7a33 Bump markdownlint-cli from 0.47.0 to 0.48.0 (#533)
• 913a235 Bump actions/setup-go from 6.2.0 to 6.3.0 (#531)
• 36c27c1 Merge pull request #530 from in-toto/dependabot/npm_and_yarn/markdown-it-14.1.1
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)