Bump @sigstore/oci from 0.4.0 to 0.5.0 (#235)

* bump @sigstore/oci from 0.4.0 to 0.5.0

Signed-off-by: Brian DeHamer <bdehamer@github.com>

* bump package version to 2.3.0

Signed-off-by: Brian DeHamer <bdehamer@github.com>

* update @babel/helpers from 7.22.13 to 7.27.0

Signed-off-by: Brian DeHamer <bdehamer@github.com>

---------

Signed-off-by: Brian DeHamer <bdehamer@github.com>
This commit is contained in:
Brian DeHamer
2025-04-25 15:46:24 -07:00
committed by GitHub
parent d73111199c
commit afd6382543
3 changed files with 89 additions and 301 deletions
Generated Vendored
+3 -1
View File
@@ -12934,7 +12934,7 @@ const getRegistryCredentials = (imageName) => {
const { username, password } = (0, exports.fromBasicAuth)(creds.auth);
// If the identitytoken is present, use it as the password (primarily for ACR)
const pass = creds.identitytoken ? creds.identitytoken : password;
return { username, password: pass };
return { headers: dockerConfig.HttpHeaders, username, password: pass };
};
exports.getRegistryCredentials = getRegistryCredentials;
// Encode the username and password as base64-encoded basicauth value
@@ -13422,6 +13422,8 @@ class RegistryClient {
// authenticate requests.
// https://github.com/google/go-containerregistry/blob/main/pkg/authn/README.md#the-registry
async signIn(creds) {
// Ensure we include an auth headers if they are present
__classPrivateFieldSet(this, _RegistryClient_fetch, __classPrivateFieldGet(this, _RegistryClient_fetch, "f").defaults({ headers: creds.headers }), "f");
// Initiate a blob upload to get the auth challenge
const probeResponse = await __classPrivateFieldGet(this, _RegistryClient_fetch, "f").call(this, `${__classPrivateFieldGet(this, _RegistryClient_baseURL, "f")}/v2/${__classPrivateFieldGet(this, _RegistryClient_repository, "f")}/blobs/uploads/`, { method: 'POST' });
// If we get a 200 response, we're already authenticated