Release version 1.0.1

Bump google.golang.org/api from 0.229.0 to 0.236.0 (#2674)

Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.229.0 to 0.236.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](googleapis/google-api-go-client@v0.229.0...v0.236.0)

---
updated-dependencies:
- dependency-name: google.golang.org/api
  dependency-version: 0.236.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Add reference attestation for multiple equivalent images (#2467)

Signed-off-by: robert-cronin <[email protected]>

Update only depdevclient deps. (#2455)

Signed-off-by: Jeff Mendoza <[email protected]>

Bump google.golang.org/grpc from 1.68.1 to 1.69.4 (#2431)

* Bump google.golang.org/grpc from 1.68.1 to 1.69.4

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.68.1 to 1.69.4.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](grpc/grpc-go@v1.68.1...v1.69.4)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>

* update generated code

Signed-off-by: pxp928 <[email protected]>

---------

Signed-off-by: dependabot[bot] <[email protected]>
Signed-off-by: pxp928 <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: pxp928 <[email protected]>

Bump actions/create-github-app-token from 1.11.0 to 1.11.1 (#2435)

Bumps [actions/create-github-app-token](https://github.com/actions/create-github-app-token) from 1.11.0 to 1.11.1.
- [Release notes](https://github.com/actions/create-github-app-token/releases)
- [Commits](actions/create-github-app-token@5d869da...c1a2851)

---
updated-dependencies:
- dependency-name: actions/create-github-app-token
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Add EOL processor so the certifier will run (#2394)

Signed-off-by: Ben Cotton <[email protected]>

add depsdev scanner implementation (#2385)

Signed-off-by: Brandon Lum <[email protected]>

[FIX] CDX vulnerability parsing and update ENT VEX index (#2371)

* fix invalid reference handle, add affected via bom-ref

Signed-off-by: pxp928 <[email protected]>

* remove field statement and status notes from vex index

Signed-off-by: pxp928 <[email protected]>

* update atlas migration and re-gen code

Signed-off-by: pxp928 <[email protected]>

* fix cert vex integration tests for status note and statement

Signed-off-by: pxp928 <[email protected]>

* add new unit test for CDX

Signed-off-by: pxp928 <[email protected]>

* add very long status note for integration testing

Signed-off-by: pxp928 <[email protected]>

* add long statement for vex integration testing

Signed-off-by: pxp928 <[email protected]>

---------

Signed-off-by: pxp928 <[email protected]>

Bump golang.org/x/crypto from 0.29.0 to 0.31.0 (#2364)

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.29.0 to 0.31.0.
- [Commits](golang/crypto@v0.29.0...v0.31.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>