build(deps): bump github.com/sigstore/cosign/v2 from 2.5.0 to 2.5.2 in /rootfs/cosign

[dependabot]

Bumps github.com/sigstore/cosign/v2 from 2.5.0 to 2.5.2.

Release notes

Sourced from github.com/sigstore/cosign/v2's releases.

v2.5.2

Changelog

• b1261098fbe8a7680732d36b52237ecf574808d5 Do not load trusted root when CT env key is set
• 19ef59d3d55e2c987de30bbd3b72fe3df0d1ec34 docs: improve doc for --no-upload option (#4206)

Thanks to all contributors!

v2.5.1

Features

• Add Rekor v2 support for trusted-root create (#4242)
• Add baseUrl and Uri to trusted-root create command
• Upgrade to TUF v2 client with trusted root
• Don't verify SCT for a private PKI cert (#4225)
• Bump TSA library to relax EKU chain validation rules (#4219)

Bug Fixes

• Bump sigstore-go to pick up log index=0 fix (#4162)
• remove unused recursive flag on attest command (#4187)

Docs

• Fix indentation in verify-blob cmd examples (#4160)

Releases

• ensure we copy the latest tags on each release (#4157)

Changelog

Sourced from github.com/sigstore/cosign/v2's changelog.

v2.5.2

Bug Fixes

• Do not load trusted root when CT env key is set

Documentation

• docs: improve doc for --no-upload option (#4206)

v2.5.1

Features

• Add Rekor v2 support for trusted-root create (#4242)
• Add baseUrl and Uri to trusted-root create command
• Upgrade to TUF v2 client with trusted root
• Don't verify SCT for a private PKI cert (#4225)
• Bump TSA library to relax EKU chain validation rules (#4219)

Bug Fixes

• Bump sigstore-go to pick up log index=0 fix (#4162)
• remove unused recursive flag on attest command (#4187)

Docs

• Fix indentation in verify-blob cmd examples (#4160)

Releases

• ensure we copy the latest tags on each release (#4157)

Contributors

• arthurus-rex
• Babak K. Shandiz
• Bob Callaway
• Carlos Tadeu Panato Junior
• Colleen Murphy
• Dmitry Savintsev
• Emmanuel Ferdman
• Hayden B
• Ville Skyttä

Commits

• af5a988 Add changelog for v2.5.2 (#4253)
• 2eb0d91 chore(deps): bump the gomod group across 1 directory with 11 updates (#4252)
• dbbe60e chore(deps): bump gitlab.com/gitlab-org/api/client-go (#4246)
• a71cb51 chore(deps): bump chainguard-dev/actions in the actions group (#4249)
• b126109 Do not load trusted root when CT env key is set
• 19ef59d docs: improve doc for --no-upload option (#4206)
• 6839e63 Add CHANGELOG for v2.5.1 (#4245)
• a7345fb Add Rekor v2 support for trusted-root create (#4242)
• 3df894e Add baseUrl and Uri to trusted-root create command
• fb26ffd update builder to use go1.24.4 (#4241)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)