chore(deps): bump slsa-framework/slsa-github-generator from 1.7.0 to 1.8.0

[dependabot]

Bumps slsa-framework/slsa-github-generator from 1.7.0 to 1.8.0.

Release notes

Sourced from slsa-framework/slsa-github-generator's releases.

v1.8.0

See the CHANGELOG for details.

v1.8.0-rc.2

See the CHANGELOG for details.

v1.8.0-rc.1

See the CHANGELOG for details.

v1.8.0-rc.0

See the CHANGELOG for details.

Changelog

Sourced from slsa-framework/slsa-github-generator's changelog.

v1.8.0

Release [v1.8.0] includes bug fixes and new features.

See the full change list.

v1.8.0: Generic Generator

• Added: A new base64-subjects-as-file was added to allow for specifying a large subject list.

v1.8.0: Node.js Builder (beta)

• Fixed: Publishing for non-scoped packages was fixed (See #2359)
• Fixed: Documentation was updated to clarify that the GitHub Actions deployment event is not supported.
• Changed: The file extension for the generated provenance file was changed from .sigstore to .build.slsa in order to make it easier to identify provenance files regardless of file format.
• Fixed: The publish action was fixed to address an issue with the package name when using Node 16.

Commits

• cdeb3a9 chore: Release v1.8.0 (#2532)
• 7a4f66b chore: Release v1.8.0-rc.2 (#2513)
• 7e5baec docs: Fix BYOB link (#2518)
• 20d9e9f docs: Improve selection of builder (#2512)
• c3ae3e3 feat: Keep ref in sync for Maven Actions (#2510)
• cb9cea2 chore: Add Kris to codeowners (#2517)
• 9c94c20 chore: ref v1.8.0 instead of main (#2509)
• a594a20 chore: Make maven publisher an action (#2482)
• c683687 chore(deps): update github-actions (#2493)
• 459c873 chore: Make gradle publisher an action (#2497)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[sonarcloud]

Kudos, SonarCloud Quality Gate passed!   

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

No Coverage information
No Duplication information

[codecov]

Codecov Report

Patch and project coverage have no change.

Comparison is base (64ab374) 81.76% compared to head (e9f41fd) 81.76%.

Additional details and impacted files

@@           Coverage Diff           @@
##           master    #2936   +/-   ##
=======================================
  Coverage   81.76%   81.76%           
=======================================
  Files         133      133           
  Lines       20348    20348           
=======================================
  Hits        16637    16637           
  Misses       2855     2855           
  Partials      856      856           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[github-actions]

Go Published Test Results

2 033 tests   2 033 ✔️  2m 39s ⏱️
   118 suites         0 💤
       1 files           0 ❌

Results for commit e9f41fd.

[github-actions]

E2E Tests Published Test Results

    4 files      4 suites   3h 40m 17s ⏱️
102 tests   85 ✔️   6 💤 11 ❌
440 runs  386 ✔️ 24 💤 30 ❌

For more details on these failures, see this check.

Results for commit e9f41fd.