build(deps): bump azure/trusted-signing-action from 0.5.9 to 0.5.10 (#2080)

dscho · web-flow · commit 5f9f6989cb75 · 2025-10-16T21:24:24.000Z
Bumps [azure/trusted-signing-action](https://github.com/azure/trusted-signing-action) from 0.5.9 to 0.5.10. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/azure/trusted-signing-action/releases">azure/trusted-signing-action's releases</a>.</em></p> <blockquote> <h2>v0.5.10</h2> <h2>What's Changed</h2> <ul> <li>Update README.md by <a href="https://github.com/Jaxelr"><code>@​Jaxelr</code></a> in <a href="https://redirect.github.com/Azure/trusted-signing-action/pull/87">Azure/trusted-signing-action#87</a></li> <li>docs: added clause indicating support for windows-2025 by <a href="https://github.com/Jaxelr"><code>@​Jaxelr</code></a> in <a href="https://redirect.github.com/Azure/trusted-signing-action/pull/89">Azure/trusted-signing-action#89</a></li> <li>Pin actions/cache by Git SHA by <a href="https://github.com/martincostello"><code>@​martincostello</code></a> in <a href="https://redirect.github.com/Azure/trusted-signing-action/pull/90">Azure/trusted-signing-action#90</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/Jaxelr"><code>@​Jaxelr</code></a> made their first contribution in <a href="https://redirect.github.com/Azure/trusted-signing-action/pull/87">Azure/trusted-signing-action#87</a></li> <li><a href="https://github.com/martincostello"><code>@​martincostello</code></a> made their first contribution in <a href="https://redirect.github.com/Azure/trusted-signing-action/pull/90">Azure/trusted-signing-action#90</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/Azure/trusted-signing-action/compare/v0.5...v0.5.10">https://github.com/Azure/trusted-signing-action/compare/v0.5...v0.5.10</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/Azure/trusted-signing-action/commit/fc390cf8ed0f14e248a542af1d838388a47c7a7c"><code>fc390cf</code></a> Pin actions/cache by Git SHA (<a href="https://redirect.github.com/azure/trusted-signing-action/issues/90">#90</a>)</li> <li><a href="https://github.com/Azure/trusted-signing-action/commit/850feeba79a126a09644049559a791ec03e66514"><code>850feeb</code></a> docs: added clause indicating support for windows-2025 (<a href="https://redirect.github.com/azure/trusted-signing-action/issues/89">#89</a>)</li> <li><a href="https://github.com/Azure/trusted-signing-action/commit/3f3eb159669a07f052f260419b589ab295b56af2"><code>3f3eb15</code></a> Update README.md (<a href="https://redirect.github.com/azure/trusted-signing-action/issues/87">#87</a>)</li> <li>See full diff in <a href="https://github.com/azure/trusted-signing-action/compare/v0.5.9...v0.5.10">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=azure/trusted-signing-action&package-manager=github_actions&previous-version=0.5.9&new-version=0.5.10)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -177,7 +177,7 @@ jobs:
         subscription-id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
 
     - name: Sign payload files with Azure Code Signing
-      uses: azure/trusted-signing-action@v0.5.9
+      uses: azure/trusted-signing-action@v0.5.10
       with:
         endpoint: https://wus2.codesigning.azure.net/
         trusted-signing-account-name: git-fundamentals-signing
@@ -204,7 +204,7 @@ jobs:
          -Destination $env:GITHUB_WORKSPACE\installers
 
     - name: Sign installers with Azure Code Signing
-      uses: azure/trusted-signing-action@v0.5.9
+      uses: azure/trusted-signing-action@v0.5.10
       with:
         endpoint: https://wus2.codesigning.azure.net/
         trusted-signing-account-name: git-fundamentals-signing
