From 2818c7bff003b176e4135379b68d152efc32db92 Mon Sep 17 00:00:00 2001
From: William Woodruff <william@trailofbits.com>
Date: Tue, 23 Apr 2024 14:16:20 -0400
Subject: [PATCH] bump sigstore-rekor-types, add NOTE

Signed-off-by: William Woodruff <william@trailofbits.com>
---
 pyproject.toml   | 2 +-
 sigstore/sign.py | 8 ++++++--
 2 files changed, 7 insertions(+), 3 deletions(-)

diff --git a/pyproject.toml b/pyproject.toml
index e8f0814d4..4d92a95f2 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -36,7 +36,7 @@ dependencies = [
   "rfc8785 ~= 0.1.2",
   "sigstore-protobuf-specs ~= 0.3.1",
   # NOTE(ww): Under active development, so strictly pinned.
-  "sigstore-rekor-types == 0.0.12",
+  "sigstore-rekor-types == 0.0.13",
   "tuf ~= 4.0",
   "platformdirs ~= 4.2",
 ]
diff --git a/sigstore/sign.py b/sigstore/sign.py
index 9b86eaf2c..1967a62cc 100644
--- a/sigstore/sign.py
+++ b/sigstore/sign.py
@@ -210,8 +210,12 @@ def sign_dsse(
 
         # Create the proposed DSSE log entry
         proposed_entry = rekor_types.Dsse(
-            spec=rekor_types.dsse.DsseV001Schema(
-                proposed_content=rekor_types.dsse.ProposedContent(
+            spec=rekor_types.dsse.DsseSchema(
+                # NOTE: mypy can't see that this kwarg is correct due to two interacting
+                # behaviors/bugs (one pydantic, one datamodel-codegen):
+                # See: <https://github.com/pydantic/pydantic/discussions/7418#discussioncomment-9024927>
+                # See: <https://github.com/koxudaxi/datamodel-code-generator/issues/1903>
+                proposed_content=rekor_types.dsse.ProposedContent(  # type: ignore[call-arg]
                     envelope=content.to_json(),
                     verifiers=[b64_cert.decode()],
                 ),