diff --git a/requirements/runtime.in b/requirements/runtime.in
index b0a0aaa..0868f81 100644
--- a/requirements/runtime.in
+++ b/requirements/runtime.in
@@ -11,7 +11,7 @@ requests
 
 # NOTE: Used to generate attestations.
 pypi-attestations ~= 0.0.13
-sigstore ~= 3.4.0
+sigstore ~= 3.5.1
 
 # NOTE: Used to detect the PyPI package name from the distribution files
 packaging
diff --git a/requirements/runtime.txt b/requirements/runtime.txt
index 162eb95..13b5f7c 100644
--- a/requirements/runtime.txt
+++ b/requirements/runtime.txt
@@ -119,7 +119,7 @@ rich==13.7.1
     #   twine
 securesystemslib==1.0.0
     # via tuf
-sigstore==3.4.0
+sigstore==3.5.1
     # via
     #   -r runtime.in
     #   pypi-attestations