build(deps): bump sigstore/cosign-installer from 3.0.5 to 3.1.0

[dependabot]

Bumps sigstore/cosign-installer from 3.0.5 to 3.1.0.

Release notes

Sourced from sigstore/cosign-installer's releases.

v3.1.0

What's Changed

• update job to use latest action release by @​cpanato in sigstore/cosign-installer#130
• Update action example for keyless signing as xarg is not required by @​jbtrystram in sigstore/cosign-installer#132
• update examples by @​cpanato in sigstore/cosign-installer#133
• bump cosign to default to release v2.1.0 and update docs by @​cpanato in sigstore/cosign-installer#136

New Contributors

• @​jbtrystram made their first contribution in sigstore/cosign-installer#132

Full Changelog: sigstore/cosign-installer@v3.0.5...v3.1.0

Commits

• d130283 bump cosign to default to release v2.1.0 and update docs (#136)
• ef0e969 Bump actions/checkout from 3.5.2 to 3.5.3 (#134)
• 871cdc7 update examples (#133)
• 60bbdf4 Update action example for keyless signing as xarg is not required (#132)
• 1b9f7b6 update job to use latest action release (#130)
• 1a22e17 Bump actions/setup-go from 4.0.0 to 4.0.1 (#127)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov]

Codecov Report

Merging #1564 (216fe40) into main (c17612e) will decrease coverage by 0.02%.
The diff coverage is n/a.

@@            Coverage Diff             @@
##             main    #1564      +/-   ##
==========================================
- Coverage   67.11%   67.09%   -0.02%     
==========================================
  Files          83       83              
  Lines        8407     8407              
==========================================
- Hits         5642     5641       -1     
  Misses       2090     2090              
- Partials      675      676       +1     

Flag	Coverage Δ
e2etests	48.47% <ø> (+0.02%)	⬆️
unittests	47.80% <ø> (-0.02%)	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

see 2 files with indirect coverage changes