chore(deps): bump github.com/sigstore/fulcio from 0.5.3 to 0.6.0

[dependabot]

Bumps github.com/sigstore/fulcio from 0.5.3 to 0.6.0.

Release notes

Sourced from github.com/sigstore/fulcio's releases.

v0.6.0

What's Changed

• Update how-certificate-issuing-works.md by @​haydentherapper in sigstore/fulcio#755
• Export Fulcio extension OIDs by @​wlynch in sigstore/fulcio#761
• upgrade to go1.19 by @​cpanato in sigstore/fulcio#767
• Fix documentation link by @​haydentherapper in sigstore/fulcio#798
• Change username format, enforce identity format by @​haydentherapper in sigstore/fulcio#802

New Contributors

• @​wlynch made their first contribution in sigstore/fulcio#761

Full Changelog: sigstore/fulcio@v0.5.4...v0.6.0

v0.5.4

What's Changed

• adding tuf root env variable by @​cpanato in sigstore/fulcio#751

Full Changelog: sigstore/fulcio@v0.5.3...v0.5.4

Commits

• aa3c020 Bump github/codeql-action from 2.1.25 to 2.1.26 (#805)
• 928d977 Change username format, enforce identity format (#802)
• aeee899 Bump google.golang.org/api from 0.97.0 to 0.98.0 (#804)
• 2448102 Bump ossf/scorecard-action from 2.0.3 to 2.0.4 (#803)
• 31b7635 Fix documentation link (#798)
• d117d9a Bump actions/dependency-review-action from 2.3.0 to 2.4.0 (#799)
• bc6fbb9 Bump actions/dependency-review-action from 2.2.0 to 2.3.0 (#796)
• 614ab84 Bump cloud.google.com/go/security from 1.7.0 to 1.8.0 (#797)
• f3dd6a9 Bump google.golang.org/api from 0.96.0 to 0.97.0 (#794)
• c01ede9 Bump github/codeql-action from 2.1.24 to 2.1.25 (#793)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov-commenter]

Codecov Report

Merging #2301 (8f2c167) into main (5d36342) will not change coverage.
The diff coverage is n/a.

@@           Coverage Diff           @@
##             main    #2301   +/-   ##
=======================================
  Coverage   29.57%   29.57%           
=======================================
  Files         131      131           
  Lines        8044     8044           
=======================================
  Hits         2379     2379           
  Misses       5348     5348           
  Partials      317      317           

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.