From ec1db97dcc0779b93ed7fa47b6bc0333989a186c Mon Sep 17 00:00:00 2001
From: Flavio Castelli <fcastelli@suse.com>
Date: Wed, 4 Sep 2024 10:45:12 +0200
Subject: [PATCH] fix: allow sigstore's TUF repository to be downloaded

Sigstore's TUF repository format changed in way that breaks the
tough crate.

This commit updates to a forked release of the tough crate that includes
fixes for these issues:
* https://github.com/awslabs/tough/pull/778 - the fix for the TUF repo change
* https://github.com/awslabs/tough/pull/769 - another long standing
  issue

Signed-off-by: Flavio Castelli <fcastelli@suse.com>
---
 Cargo.toml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/Cargo.toml b/Cargo.toml
index 5a6d8925e1..fb4ec82838 100644
--- a/Cargo.toml
+++ b/Cargo.toml
@@ -136,7 +136,7 @@ thiserror = "1.0.30"
 tokio = { version = "1.17.0", features = ["rt"] }
 tokio-util = { version = "0.7.10", features = ["io-util"] }
 #tough = { version = "0.17.1", features = ["http"], optional = true }
-tough = { git = "https://github.com/flavio/tough.git", branch = "kubewarden", features = [
+tough = { git = "https://github.com/flavio/tough.git", tag = "tough-v0.17.1+kw1", features = [
   "http",
 ], optional = true }
 tracing = "0.1.31"