diff --git a/pyproject.toml b/pyproject.toml index 6efabb2e..0ca6fc98 100644 --- a/pyproject.toml +++ b/pyproject.toml @@ -48,7 +48,7 @@ gcpkms = ["google-cloud-kms", "cryptography>=37.0.0"] hsm = ["asn1crypto", "cryptography>=37.0.0", "PyKCS11"] pynacl = ["pynacl>1.2.0"] PySPX = ["PySPX>=0.5.0"] -sigstore = ["sigstore!=1.1.2"] +sigstore = ["sigstore==1.1.2"] [tool.hatch.version] path = "securesystemslib/__init__.py" diff --git a/requirements-sigstore.txt b/requirements-sigstore.txt index 4f8ef56f..6a939765 100644 --- a/requirements-sigstore.txt +++ b/requirements-sigstore.txt @@ -1 +1 @@ -sigstore==1.1.1 +sigstore==1.1.2 diff --git a/securesystemslib/signer/_sigstore_signer.py b/securesystemslib/signer/_sigstore_signer.py index e0dfaadd..866c12e3 100644 --- a/securesystemslib/signer/_sigstore_signer.py +++ b/securesystemslib/signer/_sigstore_signer.py @@ -161,7 +161,9 @@ def from_priv_key_uri( issuer = Issuer.production() token = issuer.identity_token() else: - token = detect_credential() + # Note: this method signature only works with sigstore-python 1.1.2: + # dependencies must be updated when changing this + token = detect_credential("sigstore") return cls(token, public_key)