{"id":61955,"name":"projectsigstore/rekor-server","ecosystem":"docker","repository_url":null,"issues_count":4,"created_at":"2025-08-19T08:44:31.140Z","updated_at":"2025-08-19T08:44:31.140Z","purl":"pkg:docker/projectsigstore/rekor-server","unique_repositories_count":2,"unique_repositories_count_past_30_days":2,"recent_issues":[{"uuid":"2806625109","node_id":"PR_kwDOGqlInc6nSbNV","number":1716,"state":"open","title":"Bump projectsigstore/rekor-server from v1.4.1 to v1.4.2 in /config/rekor/rekor","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-09-08T02:32:52.000Z","updated_at":"2025-09-10T16:06:33.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"projectsigstore/rekor-server","old_version":"v1.4.1","new_version":"v1.4.2","repository_url":null}],"path":"/config/rekor/rekor","ecosystem":"docker"},"body":"Bumps projectsigstore/rekor-server from v1.4.1 to v1.4.2.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=projectsigstore/rekor-server\u0026package-manager=docker\u0026previous-version=v1.4.1\u0026new-version=v1.4.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/sigstore/scaffolding/pull/1716","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/sigstore%2Fscaffolding/issues/1716","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1716/packages"},{"uuid":"2806557947","node_id":"PR_kwDOG9Ysls6nSKz7","number":459,"state":"open","title":"Bump projectsigstore/rekor-server from v1.4.1 to v1.4.2 in /config/rekor/rekor","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"NONE","state_reason":null,"created_at":"2025-09-08T01:37:45.000Z","updated_at":"2025-09-08T01:37:46.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"projectsigstore/rekor-server","old_version":"v1.4.1","new_version":"v1.4.2","repository_url":null}],"path":"/config/rekor/rekor","ecosystem":"docker"},"body":"Bumps projectsigstore/rekor-server from v1.4.1 to v1.4.2.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=projectsigstore/rekor-server\u0026package-manager=docker\u0026previous-version=v1.4.1\u0026new-version=v1.4.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/cpanato/scaffolding/pull/459","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/cpanato%2Fscaffolding/issues/459","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/459/packages"},{"uuid":"2788582525","node_id":"PR_kwDOGqlInc6mNmR9","number":1704,"state":"closed","title":"Bump projectsigstore/rekor-server from v1.4.0 to v1.4.1 in /config/rekor/rekor","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":"2025-09-01T08:51:15.000Z","author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-09-01T05:51:01.000Z","updated_at":"2025-09-01T08:51:15.000Z","time_to_close":10814,"merged_at":"2025-09-01T08:51:15.000Z","merged_by":"cpanato","closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"projectsigstore/rekor-server","old_version":"v1.4.0","new_version":"v1.4.1","repository_url":null}],"path":"/config/rekor/rekor","ecosystem":"docker"},"body":"Bumps projectsigstore/rekor-server from v1.4.0 to v1.4.1.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=projectsigstore/rekor-server\u0026package-manager=docker\u0026previous-version=v1.4.0\u0026new-version=v1.4.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/sigstore/scaffolding/pull/1704","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/sigstore%2Fscaffolding/issues/1704","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1704/packages"},{"uuid":"2755542514","node_id":"PR_kwDOGqlInc6kPj3y","number":1683,"state":"closed","title":"Bump projectsigstore/rekor-server from v1.3.9 to v1.4.0 in /config/rekor/rekor","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":"2025-08-19T12:42:46.000Z","author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-08-19T07:51:48.000Z","updated_at":"2025-08-19T12:42:47.000Z","time_to_close":17458,"merged_at":"2025-08-19T12:42:46.000Z","merged_by":"cpanato","closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"projectsigstore/rekor-server","old_version":"v1.3.9","new_version":"v1.4.0","repository_url":null}],"path":"/config/rekor/rekor","ecosystem":"docker"},"body":"Bumps projectsigstore/rekor-server from v1.3.9 to v1.4.0.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=projectsigstore/rekor-server\u0026package-manager=docker\u0026previous-version=v1.3.9\u0026new-version=v1.4.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/sigstore/scaffolding/pull/1683","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/sigstore%2Fscaffolding/issues/1683","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1683/packages"}],"issue_packages":[{"old_version":"v1.4.1","new_version":"v1.4.2","update_type":"patch","path":"/config/rekor/rekor","pr_created_at":"2025-09-08T02:32:52.000Z","version_change":"v1.4.1 → v1.4.2","issue":{"uuid":"2806625109","node_id":"PR_kwDOGqlInc6nSbNV","number":1716,"state":"open","title":"Bump projectsigstore/rekor-server from v1.4.1 to v1.4.2 in /config/rekor/rekor","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-09-08T02:32:52.000Z","updated_at":"2025-09-10T16:06:33.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"projectsigstore/rekor-server","old_version":"v1.4.1","new_version":"v1.4.2","repository_url":null}],"path":"/config/rekor/rekor","ecosystem":"docker"},"body":"Bumps projectsigstore/rekor-server from v1.4.1 to v1.4.2.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=projectsigstore/rekor-server\u0026package-manager=docker\u0026previous-version=v1.4.1\u0026new-version=v1.4.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/sigstore/scaffolding/pull/1716","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/sigstore%2Fscaffolding/issues/1716","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1716/packages"}},{"old_version":"v1.4.1","new_version":"v1.4.2","update_type":"patch","path":"/config/rekor/rekor","pr_created_at":"2025-09-08T01:37:45.000Z","version_change":"v1.4.1 → v1.4.2","issue":{"uuid":"2806557947","node_id":"PR_kwDOG9Ysls6nSKz7","number":459,"state":"open","title":"Bump projectsigstore/rekor-server from v1.4.1 to v1.4.2 in /config/rekor/rekor","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"NONE","state_reason":null,"created_at":"2025-09-08T01:37:45.000Z","updated_at":"2025-09-08T01:37:46.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"projectsigstore/rekor-server","old_version":"v1.4.1","new_version":"v1.4.2","repository_url":null}],"path":"/config/rekor/rekor","ecosystem":"docker"},"body":"Bumps projectsigstore/rekor-server from v1.4.1 to v1.4.2.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=projectsigstore/rekor-server\u0026package-manager=docker\u0026previous-version=v1.4.1\u0026new-version=v1.4.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/cpanato/scaffolding/pull/459","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/cpanato%2Fscaffolding/issues/459","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/459/packages"}},{"old_version":"v1.4.0","new_version":"v1.4.1","update_type":"patch","path":"/config/rekor/rekor","pr_created_at":"2025-09-01T05:51:01.000Z","version_change":"v1.4.0 → v1.4.1","issue":{"uuid":"2788582525","node_id":"PR_kwDOGqlInc6mNmR9","number":1704,"state":"closed","title":"Bump projectsigstore/rekor-server from v1.4.0 to v1.4.1 in /config/rekor/rekor","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":"2025-09-01T08:51:15.000Z","author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-09-01T05:51:01.000Z","updated_at":"2025-09-01T08:51:15.000Z","time_to_close":10814,"merged_at":"2025-09-01T08:51:15.000Z","merged_by":"cpanato","closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"projectsigstore/rekor-server","old_version":"v1.4.0","new_version":"v1.4.1","repository_url":null}],"path":"/config/rekor/rekor","ecosystem":"docker"},"body":"Bumps projectsigstore/rekor-server from v1.4.0 to v1.4.1.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=projectsigstore/rekor-server\u0026package-manager=docker\u0026previous-version=v1.4.0\u0026new-version=v1.4.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/sigstore/scaffolding/pull/1704","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/sigstore%2Fscaffolding/issues/1704","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1704/packages"}},{"old_version":"v1.3.9","new_version":"v1.4.0","update_type":"minor","path":"/config/rekor/rekor","pr_created_at":"2025-08-19T07:51:48.000Z","version_change":"v1.3.9 → v1.4.0","issue":{"uuid":"2755542514","node_id":"PR_kwDOGqlInc6kPj3y","number":1683,"state":"closed","title":"Bump projectsigstore/rekor-server from v1.3.9 to v1.4.0 in /config/rekor/rekor","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":"2025-08-19T12:42:46.000Z","author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-08-19T07:51:48.000Z","updated_at":"2025-08-19T12:42:47.000Z","time_to_close":17458,"merged_at":"2025-08-19T12:42:46.000Z","merged_by":"cpanato","closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"projectsigstore/rekor-server","old_version":"v1.3.9","new_version":"v1.4.0","repository_url":null}],"path":"/config/rekor/rekor","ecosystem":"docker"},"body":"Bumps projectsigstore/rekor-server from v1.3.9 to v1.4.0.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=projectsigstore/rekor-server\u0026package-manager=docker\u0026previous-version=v1.3.9\u0026new-version=v1.4.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/sigstore/scaffolding/pull/1683","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/sigstore%2Fscaffolding/issues/1683","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1683/packages"}}]}