fix(deps): update npm (slsa-framework#2083)

[![Mend Renovate](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com) This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [markdownlint-cli](https://github.com/igorshubovych/markdownlint-cli) | [`0.33.0` -> `0.34.0`](https://renovatebot.com/diffs/npm/markdownlint-cli/0.33.0/0.34.0) | [![age](https://badges.renovateapi.com/packages/npm/markdownlint-cli/0.34.0/age-slim)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://badges.renovateapi.com/packages/npm/markdownlint-cli/0.34.0/adoption-slim)](https://docs.renovatebot.com/merge-confidence/) | [![passing](https://badges.renovateapi.com/packages/npm/markdownlint-cli/0.34.0/compatibility-slim/0.33.0)](https://docs.renovatebot.com/merge-confidence/) | [![confidence](https://badges.renovateapi.com/packages/npm/markdownlint-cli/0.34.0/confidence-slim/0.33.0)](https://docs.renovatebot.com/merge-confidence/) | | [sigstore](https://github.com/sigstore/sigstore-js) | [`1.3.2` -> `1.4.0`](https://renovatebot.com/diffs/npm/sigstore/1.3.2/1.4.0) | [![age](https://badges.renovateapi.com/packages/npm/sigstore/1.4.0/age-slim)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://badges.renovateapi.com/packages/npm/sigstore/1.4.0/adoption-slim)](https://docs.renovatebot.com/merge-confidence/) | [![passing](https://badges.renovateapi.com/packages/npm/sigstore/1.4.0/compatibility-slim/1.3.2)](https://docs.renovatebot.com/merge-confidence/) | [![confidence](https://badges.renovateapi.com/packages/npm/sigstore/1.4.0/confidence-slim/1.3.2)](https://docs.renovatebot.com/merge-confidence/) | --- Warnings were logged while processing this repo. Please check the Dependency Dashboard for more information. --- <details> <summary>igorshubovych/markdownlint-cli</summary> [`v0.34.0`](https://github.com/igorshubovych/markdownlint-cli/releases/tag/v0.34.0): 0.34.0 [Compare Source](https://github.com/igorshubovych/markdownlint-cli/compare/v0.33.0...v0.34.0) - Update `markdownlint` dependency to `0.28.2` - Introduce `micromark` parser for better positional data (internal only) - Use micromark in `MD013`/`MD033`/`MD034`/`MD035`/`MD038`/`MD044`/`MD052`/`MD053` - Update all dependencies via `Dependabot` </details> <details> <summary>sigstore/sigstore-js</summary> [`v1.4.0`](https://github.com/sigstore/sigstore-js/blob/HEAD/CHANGELOG.md#140) [Compare Source](https://github.com/sigstore/sigstore-js/compare/v1.3.2...v1.4.0) - [`99093bb`](https://github.com/sigstore/sigstore-js/commit/99093bb): add specific errors codes for `InternalError`s - [`99093bb`](https://github.com/sigstore/sigstore-js/commit/99093bb): export error classes </details> --- 📅 **Schedule**: Branch creation - "every weekend" (UTC), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 **Immortal**: This PR will be recreated if closed unmerged. Get [config help](https://github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR has been generated by [Mend Renovate](https://www.mend.io/free-developer-tools/renovate/). View repository job log [here](https://app.renovatebot.com/dashboard#github/slsa-framework/slsa-github-generator).  --------- Signed-off-by: Renovate Bot <bot@renovateapp.com> Signed-off-by: Ian Lewis <ianlewis@google.com> Co-authored-by: Ian Lewis <ianlewis@google.com>
laurentsimon · May 2, 2023 · 7c73553 · 7c73553
1 parent e814d62
commit 7c73553
Show file tree

Hide file tree

Showing 8 changed files with 377 additions and 91 deletions.
diff --git a/.github/actions/verify-token/dist/index.js b/.github/actions/verify-token/dist/index.js
@@ -38248,7 +38248,11 @@ class CAClient {
             return certificate.signedCertificateEmbeddedSct.chain.certificates;
         }
         catch (err) {
-            throw new error_1.InternalError('error creating signing certificate', err);
+            throw new error_1.InternalError({
+                code: 'CA_CREATE_SIGNING_CERTIFICATE_ERROR',
+                message: 'error creating signing certificate',
+                cause: err,
+            });
         }
     }
 }
@@ -38706,7 +38710,7 @@ exports.identityProviders = identityProviders;
 "use strict";
 
 Object.defineProperty(exports, "__esModule", ({ value: true }));
-exports.PolicyError = exports.InternalError = exports.ValidationError = exports.VerificationError = void 0;
+exports.InternalError = exports.PolicyError = exports.ValidationError = exports.VerificationError = void 0;
 /*
 Copyright 2023 The Sigstore Authors.
 
@@ -38736,12 +38740,16 @@ exports.VerificationError = VerificationError;
 class ValidationError extends BaseError {
 }
 exports.ValidationError = ValidationError;
-class InternalError extends BaseError {
-}
-exports.InternalError = InternalError;
 class PolicyError extends BaseError {
 }
 exports.PolicyError = PolicyError;
+class InternalError extends BaseError {
+    constructor({ code, message, cause, }) {
+        super(message, cause);
+        this.code = code;
+    }
+}
+exports.InternalError = InternalError;
 
 
 /***/ }),
@@ -39640,7 +39648,7 @@ var __importStar = (this && this.__importStar) || function (mod) {
     return result;
 };
 Object.defineProperty(exports, "__esModule", ({ value: true }));
-exports.DEFAULT_REKOR_URL = exports.DEFAULT_FULCIO_URL = exports.tuf = exports.utils = exports.verify = exports.attest = exports.sign = void 0;
+exports.DEFAULT_REKOR_URL = exports.DEFAULT_FULCIO_URL = exports.tuf = exports.utils = exports.VerificationError = exports.ValidationError = exports.PolicyError = exports.InternalError = exports.verify = exports.attest = exports.sign = void 0;
 /*
 Copyright 2023 The Sigstore Authors.
 
@@ -39709,6 +39717,11 @@ const tufUtils = {
     },
 };
 exports.tuf = tufUtils;
+var error_1 = __nccwpck_require__(6274);
+Object.defineProperty(exports, "InternalError", ({ enumerable: true, get: function () { return error_1.InternalError; } }));
+Object.defineProperty(exports, "PolicyError", ({ enumerable: true, get: function () { return error_1.PolicyError; } }));
+Object.defineProperty(exports, "ValidationError", ({ enumerable: true, get: function () { return error_1.ValidationError; } }));
+Object.defineProperty(exports, "VerificationError", ({ enumerable: true, get: function () { return error_1.VerificationError; } }));
 exports.utils = __importStar(__nccwpck_require__(2021));
 exports.DEFAULT_FULCIO_URL = config.DEFAULT_FULCIO_URL;
 exports.DEFAULT_REKOR_URL = config.DEFAULT_REKOR_URL;
@@ -39883,11 +39896,19 @@ class TLogClient {
                     entry = await this.rekor.getEntry(uuid);
                 }
                 catch (err) {
-                    throw new error_1.InternalError('error fetching tlog entry', err);
+                    throw new error_1.InternalError({
+                        code: 'TLOG_FETCH_ENTRY_ERROR',
+                        message: 'error fetching tlog entry',
+                        cause: err,
+                    });
                 }
             }
             else {
-                throw new error_1.InternalError('error creating tlog entry', err);
+                throw new error_1.InternalError({
+                    code: 'TLOG_CREATE_ENTRY_ERROR',
+                    message: 'error creating tlog entry',
+                    cause: err,
+                });
             }
         }
         return entry;
@@ -40349,7 +40370,11 @@ async function readTarget(tuf, targetPath) {
     return new Promise((resolve, reject) => {
         fs_1.default.readFile(path, 'utf-8', (err, data) => {
             if (err) {
-                reject(new error_1.InternalError(`error reading target: ${err}`));
+                reject(new error_1.InternalError({
+                    code: 'TUF_READ_TARGET_ERROR',
+                    message: `error reading target ${path}`,
+                    cause: err,
+                }));
             }
             else {
                 resolve(data);
@@ -40367,10 +40392,17 @@ async function getTargetPath(tuf, target) {
         targetInfo = await tuf.refresh().then(() => tuf.getTargetInfo(target));
     }
     catch (err) {
-        throw new error_1.InternalError(`error refreshing TUF metadata: ${err}`);
+        throw new error_1.InternalError({
+            code: 'TUF_REFRESH_METADATA_ERROR',
+            message: 'error refreshing TUF metadata',
+            cause: err,
+        });
     }
     if (!targetInfo) {
-        throw new error_1.InternalError(`target ${target} not found`);
+        throw new error_1.InternalError({
+            code: 'TUF_FIND_TARGET_ERROR',
+            message: `target ${target} not found`,
+        });
     }
     let path = await tuf.findCachedTarget(targetInfo);
     // An empty path here means the target has not been cached locally, or is
@@ -40380,7 +40412,11 @@ async function getTargetPath(tuf, target) {
             path = await tuf.downloadTarget(targetInfo);
         }
         catch (err) {
-            throw new error_1.InternalError(`error downloading target: ${err}`);
+            throw new error_1.InternalError({
+                code: 'TUF_DOWNLOAD_TARGET_ERROR',
+                message: `error downloading target ${path}`,
+                cause: err,
+            });
         }
     }
     return path;
@@ -61021,7 +61057,7 @@ module.exports = {"i8":"3.0.1"};
 /***/ ((module) => {
 
 "use strict";
-module.exports = {"i8":"1.3.2"};
+module.exports = {"i8":"1.4.0"};
 
 /***/ }),
 

diff --git a/.github/actions/verify-token/dist/index.js.map b/.github/actions/verify-token/dist/index.js.map
diff --git a/.github/actions/verify-token/package-lock.json b/.github/actions/verify-token/package-lock.json
diff --git a/actions/delegator/setup-token/dist/index.js b/actions/delegator/setup-token/dist/index.js
@@ -37357,7 +37357,11 @@ class CAClient {
             return certificate.signedCertificateEmbeddedSct.chain.certificates;
         }
         catch (err) {
-            throw new error_1.InternalError('error creating signing certificate', err);
+            throw new error_1.InternalError({
+                code: 'CA_CREATE_SIGNING_CERTIFICATE_ERROR',
+                message: 'error creating signing certificate',
+                cause: err,
+            });
         }
     }
 }
@@ -37815,7 +37819,7 @@ exports.identityProviders = identityProviders;
 "use strict";
 
 Object.defineProperty(exports, "__esModule", ({ value: true }));
-exports.PolicyError = exports.InternalError = exports.ValidationError = exports.VerificationError = void 0;
+exports.InternalError = exports.PolicyError = exports.ValidationError = exports.VerificationError = void 0;
 /*
 Copyright 2023 The Sigstore Authors.
 
@@ -37845,12 +37849,16 @@ exports.VerificationError = VerificationError;
 class ValidationError extends BaseError {
 }
 exports.ValidationError = ValidationError;
-class InternalError extends BaseError {
-}
-exports.InternalError = InternalError;
 class PolicyError extends BaseError {
 }
 exports.PolicyError = PolicyError;
+class InternalError extends BaseError {
+    constructor({ code, message, cause, }) {
+        super(message, cause);
+        this.code = code;
+    }
+}
+exports.InternalError = InternalError;
 
 
 /***/ }),
@@ -38749,7 +38757,7 @@ var __importStar = (this && this.__importStar) || function (mod) {
     return result;
 };
 Object.defineProperty(exports, "__esModule", ({ value: true }));
-exports.DEFAULT_REKOR_URL = exports.DEFAULT_FULCIO_URL = exports.tuf = exports.utils = exports.verify = exports.attest = exports.sign = void 0;
+exports.DEFAULT_REKOR_URL = exports.DEFAULT_FULCIO_URL = exports.tuf = exports.utils = exports.VerificationError = exports.ValidationError = exports.PolicyError = exports.InternalError = exports.verify = exports.attest = exports.sign = void 0;
 /*
 Copyright 2023 The Sigstore Authors.
 
@@ -38818,6 +38826,11 @@ const tufUtils = {
     },
 };
 exports.tuf = tufUtils;
+var error_1 = __nccwpck_require__(6274);
+Object.defineProperty(exports, "InternalError", ({ enumerable: true, get: function () { return error_1.InternalError; } }));
+Object.defineProperty(exports, "PolicyError", ({ enumerable: true, get: function () { return error_1.PolicyError; } }));
+Object.defineProperty(exports, "ValidationError", ({ enumerable: true, get: function () { return error_1.ValidationError; } }));
+Object.defineProperty(exports, "VerificationError", ({ enumerable: true, get: function () { return error_1.VerificationError; } }));
 exports.utils = __importStar(__nccwpck_require__(2021));
 exports.DEFAULT_FULCIO_URL = config.DEFAULT_FULCIO_URL;
 exports.DEFAULT_REKOR_URL = config.DEFAULT_REKOR_URL;
@@ -38992,11 +39005,19 @@ class TLogClient {
                     entry = await this.rekor.getEntry(uuid);
                 }
                 catch (err) {
-                    throw new error_1.InternalError('error fetching tlog entry', err);
+                    throw new error_1.InternalError({
+                        code: 'TLOG_FETCH_ENTRY_ERROR',
+                        message: 'error fetching tlog entry',
+                        cause: err,
+                    });
                 }
             }
             else {
-                throw new error_1.InternalError('error creating tlog entry', err);
+                throw new error_1.InternalError({
+                    code: 'TLOG_CREATE_ENTRY_ERROR',
+                    message: 'error creating tlog entry',
+                    cause: err,
+                });
             }
         }
         return entry;
@@ -39458,7 +39479,11 @@ async function readTarget(tuf, targetPath) {
     return new Promise((resolve, reject) => {
         fs_1.default.readFile(path, 'utf-8', (err, data) => {
             if (err) {
-                reject(new error_1.InternalError(`error reading target: ${err}`));
+                reject(new error_1.InternalError({
+                    code: 'TUF_READ_TARGET_ERROR',
+                    message: `error reading target ${path}`,
+                    cause: err,
+                }));
             }
             else {
                 resolve(data);
@@ -39476,10 +39501,17 @@ async function getTargetPath(tuf, target) {
         targetInfo = await tuf.refresh().then(() => tuf.getTargetInfo(target));
     }
     catch (err) {
-        throw new error_1.InternalError(`error refreshing TUF metadata: ${err}`);
+        throw new error_1.InternalError({
+            code: 'TUF_REFRESH_METADATA_ERROR',
+            message: 'error refreshing TUF metadata',
+            cause: err,
+        });
     }
     if (!targetInfo) {
-        throw new error_1.InternalError(`target ${target} not found`);
+        throw new error_1.InternalError({
+            code: 'TUF_FIND_TARGET_ERROR',
+            message: `target ${target} not found`,
+        });
     }
     let path = await tuf.findCachedTarget(targetInfo);
     // An empty path here means the target has not been cached locally, or is
@@ -39489,7 +39521,11 @@ async function getTargetPath(tuf, target) {
             path = await tuf.downloadTarget(targetInfo);
         }
         catch (err) {
-            throw new error_1.InternalError(`error downloading target: ${err}`);
+            throw new error_1.InternalError({
+                code: 'TUF_DOWNLOAD_TARGET_ERROR',
+                message: `error downloading target ${path}`,
+                cause: err,
+            });
         }
     }
     return path;
@@ -51539,7 +51575,7 @@ module.exports = {"i8":"3.0.1"};
 /***/ ((module) => {
 
 "use strict";
-module.exports = {"i8":"1.3.2"};
+module.exports = {"i8":"1.4.0"};
 
 /***/ }),
 

diff --git a/actions/delegator/setup-token/dist/index.js.map b/actions/delegator/setup-token/dist/index.js.map
diff --git a/actions/delegator/setup-token/package-lock.json b/actions/delegator/setup-token/package-lock.json