Releases: sigstore/sigstore
Releases · sigstore/sigstore
v1.3.1
What's Changed
- oauthflow: Fix recursive call for GetOutput. by @wlynch in #527
- Bump github.com/aws/aws-sdk-go from 1.44.41 to 1.44.42 by @dependabot in #531
- Bump github.com/stretchr/testify from 1.7.4 to 1.7.5 by @dependabot in #530
- Bump github.com/go-rod/rod from 0.107.2 to 0.107.3 by @dependabot in #532
- Bump github.com/aws/aws-sdk-go from 1.44.42 to 1.44.43 by @dependabot in #533
- Bump github.com/aws/aws-sdk-go from 1.44.43 to 1.44.44 by @dependabot in #534
- Bump google.golang.org/api from 0.85.0 to 0.86.0 by @dependabot in #535
- Keep calm and don't panic: enable and apply forcetypeassert lint rules by @Dentrax in #522
- Bump github.com/aws/aws-sdk-go from 1.44.44 to 1.44.45 by @dependabot in #538
- Bump github.com/stretchr/testify from 1.7.5 to 1.8.0 by @dependabot in #539
- Bump github/codeql-action from 2.1.14 to 2.1.15 by @dependabot in #537
- Bump github.com/aws/aws-sdk-go-v2 from 1.16.5 to 1.16.6 by @dependabot in #542
- Bump github.com/aws/aws-sdk-go-v2/config from 1.15.11 to 1.15.12 by @dependabot in #540
- Bump github.com/aws/aws-sdk-go-v2/service/kms from 1.17.3 to 1.17.4 by @dependabot in #541
- Remove err from type cast failures by @mtrmac in #536
- Bump github.com/aws/aws-sdk-go from 1.44.45 to 1.44.46 by @dependabot in #543
- Bump github.com/aws/aws-sdk-go from 1.44.46 to 1.44.47 by @dependabot in #545
- Bump github.com/aws/aws-sdk-go from 1.44.47 to 1.44.48 by @dependabot in #547
- Bump github.com/theupdateframework/go-tuf from 0.3.0 to 0.3.1 by @dependabot in #546
- Bump github.com/aws/aws-sdk-go-v2/config from 1.15.12 to 1.15.13 by @dependabot in #550
- Bump github.com/aws/aws-sdk-go-v2/service/kms from 1.17.4 to 1.17.5 by @dependabot in #549
- Bump github.com/aws/aws-sdk-go from 1.44.48 to 1.44.49 by @dependabot in #551
- Bump github.com/aws/aws-sdk-go from 1.44.49 to 1.44.51 by @dependabot in #553
- Bump github.com/go-rod/rod from 0.107.3 to 0.108.1 by @dependabot in #552
- Bump github.com/aws/aws-sdk-go from 1.44.51 to 1.44.52 by @dependabot in #556
- Bump actions/setup-go from 3.2.0 to 3.2.1 by @dependabot in #555
- Bump github.com/aws/aws-sdk-go-v2/config from 1.15.13 to 1.15.14 by @dependabot in #557
- Bump google.golang.org/api from 0.86.0 to 0.87.0 by @dependabot in #558
- Bump github.com/aws/aws-sdk-go from 1.44.52 to 1.44.53 by @dependabot in #559
- tuf: remove test that targets list is complete by @asraa in #554
- Bump actions/cache from 3.0.4 to 3.0.5 by @dependabot in #560
- Bump github/codeql-action from 2.1.15 to 2.1.16 by @dependabot in #561
- Bump github.com/aws/aws-sdk-go from 1.44.53 to 1.44.54 by @dependabot in #564
- Bump actions/dependency-review-action from 2.0.2 to 2.0.4 by @dependabot in #563
- Bump github.com/aws/aws-sdk-go from 1.44.54 to 1.44.55 by @dependabot in #565
- Bump github.com/aws/aws-sdk-go from 1.44.55 to 1.44.56 by @dependabot in #566
- fix gosec lint G112 errors by @dekkagaijin in #571
- Bump github.com/aws/aws-sdk-go-v2/service/kms from 1.17.5 to 1.18.0 by @dependabot in #568
- Bump github.com/aws/aws-sdk-go from 1.44.56 to 1.44.59 by @dependabot in #569
- Bump github.com/google/go-containerregistry from 0.10.0 to 0.11.0 by @dependabot in #572
- Bump google.golang.org/api from 0.87.0 to 0.88.0 by @dependabot in #570
- update deps by @dekkagaijin in #573
- Bump github.com/aws/aws-sdk-go from 1.44.60 to 1.44.61 by @dependabot in #575
- Bump github.com/aws/aws-sdk-go from 1.44.61 to 1.44.62 by @dependabot in #577
- Bump github.com/Azure/go-autorest/autorest from 0.11.27 to 0.11.28 by @dependabot in #578
- Bump google.golang.org/api from 0.88.0 to 0.89.0 by @dependabot in #579
- Bump github.com/aws/aws-sdk-go from 1.44.62 to 1.44.63 by @dependabot in #580
- update dependencies that was not bumped by the bot by @cpanato in #576
- Add oncall members to list of people who can kick off releases by @priyawadhwa in #581
New Contributors
Full Changelog: v1.3.0...v1.3.1
v1.3.0
What's Changed
- Bump github.com/aws/aws-sdk-go from 1.43.24 to 1.43.26 by @dependabot in #349
- Bump github.com/hashicorp/vault/api from 1.4.1 to 1.5.0 by @dependabot in #348
- Add method to validate public key by @haydentherapper in #344
- Makefile: Install golangci lint by @hectorj2f in #350
- Bump github.com/go-rod/rod from 0.104.1 to 0.104.2 by @dependabot in #352
- Bump github.com/aws/aws-sdk-go from 1.43.26 to 1.43.27 by @dependabot in #351
- Bump github.com/Azure/azure-sdk-for-go from 62.3.0+incompatible to 63.0.0+incompatible by @dependabot in #354
- Bump github.com/aws/aws-sdk-go from 1.43.27 to 1.43.28 by @dependabot in #355
- Bump github.com/go-rod/rod from 0.104.2 to 0.104.4 by @dependabot in #358
- Bump github/codeql-action from 1.1.5 to 2.1.6 by @dependabot in #356
- Bump actions/cache from 3.0.0 to 3.0.1 by @dependabot in #357
- oidc: set the redirect url if needed by @hectorj2f in #353
- Fix regex for matching GCP KMS key by @haydentherapper in #359
- Bump github.com/aws/aws-sdk-go from 1.43.28 to 1.43.29 by @dependabot in #360
- Bump github.com/aws/aws-sdk-go from 1.43.29 to 1.43.30 by @dependabot in #363
- Bump github.com/Azure/go-autorest/autorest from 0.11.24 to 0.11.25 by @dependabot in #362
- update boulder dependency to remove some syslog dependencies that affect windows build by @cpanato in #364
- Add fake signer that implements KMS interface by @haydentherapper in #361
- fix if check in the release job by @cpanato in #365
- fix missing curly brackets by @cpanato in #366
- Bump github.com/aws/aws-sdk-go from 1.43.30 to 1.43.31 by @dependabot in #367
- chore: set redirect URL in doOobFlow by @hectorj2f in #368
- Bump github.com/aws/aws-sdk-go from 1.43.31 to 1.43.33 by @dependabot in #373
- Bump github/codeql-action from 2.1.6 to 2.1.7 by @dependabot in #372
- Bump google-github-actions/auth from 0.6.0 to 0.7.0 by @dependabot in #371
- Bump github.com/Azure/azure-sdk-for-go from 63.0.0+incompatible to 63.1.0+incompatible by @dependabot in #369
- Bump github.com/aws/aws-sdk-go from 1.43.33 to 1.43.34 by @dependabot in #375
- Bump github.com/aws/aws-sdk-go from 1.43.34 to 1.43.36 by @dependabot in #379
- Bump github/codeql-action from 2.1.7 to 2.1.8 by @dependabot in #378
- Bump github.com/go-rod/rod from 0.104.4 to 0.105.0 by @dependabot in #377
- Update to go 1.17 / 1.18 by @lukehinds in #374
- Bump github.com/aws/aws-sdk-go from 1.43.36 to 1.43.37 by @dependabot in #382
- Bump github.com/go-rod/rod from 0.105.0 to 0.105.1 by @dependabot in #383
- Bump github.com/Azure/azure-sdk-for-go from 63.1.0+incompatible to 63.2.0+incompatible by @dependabot in #385
- Bump actions/cache from 3.0.1 to 3.0.2 by @dependabot in #381
- run tests with go1.17 and go1.18 by @cpanato in #380
- Bump github.com/aws/aws-sdk-go from 1.43.37 to 1.43.39 by @dependabot in #387
- Bump github.com/aws/aws-sdk-go from 1.43.39 to 1.43.40 by @dependabot in #389
- Bump actions/checkout from 3.0.0 to 3.0.1 by @dependabot in #388
- Bump github.com/go-rod/rod from 0.105.1 to 0.106.0 by @dependabot in #390
- Bump github.com/aws/aws-sdk-go from 1.43.40 to 1.43.41 by @dependabot in #391
- Bump github.com/Azure/azure-sdk-for-go from 63.2.0+incompatible to 63.3.0+incompatible by @dependabot in #393
- Bump github.com/Azure/go-autorest/autorest from 0.11.25 to 0.11.26 by @dependabot in #392
- Bump github.com/go-rod/rod from 0.106.0 to 0.106.1 by @dependabot in #395
- Add a helper method to parse a PEM-encoded CSR by @haydentherapper in #394
- Bump github.com/aws/aws-sdk-go from 1.43.41 to 1.43.43 by @dependabot in #398
- Add method for generating certificate serial number by @haydentherapper in #399
- Bump github.com/aws/aws-sdk-go from 1.43.43 to 1.43.44 by @dependabot in #402
- Bump actions/checkout from 3.0.1 to 3.0.2 by @dependabot in #401
- make target integration by @sallyom in #400
- Bump github.com/Azure/go-autorest/autorest from 0.11.26 to 0.11.27 by @dependabot in #404
- Bump github.com/aws/aws-sdk-go from 1.43.44 to 1.43.45 by @dependabot in #405
- Add error type for kms.Get when provider not found by @znewman01 in #407
- Bump github.com/Azure/azure-sdk-for-go from 63.3.0+incompatible to 63.4.0+incompatible by @dependabot in #409
- Bump github.com/aws/aws-sdk-go from 1.43.45 to 1.44.0 by @dependabot in #410
- Bump google-github-actions/auth from 0.7.0 to 0.7.1 by @dependabot in #408
- Bump github.com/aws/aws-sdk-go from 1.44.0 to 1.44.1 by @dependabot in #412
- Bump github.com/google/go-cmp from 0.5.7 to 0.5.8 by @dependabot in #411
- Bump github.com/aws/aws-sdk-go from 1.44.1 to 1.44.2 by @dependabot in #413
- Bump github.com/go-rod/rod from 0.106.1 to 0.106.2 by @dependabot in #414
- Bump github/codeql-action from 2.1.8 to 2.1.9 by @dependabot in #415
- Bump github.com/go-rod/rod from 0.106.2 to 0.106.4 by @dependabot in #417
- Bump github.com/aws/aws-sdk-go from 1.44.2 to 1.44.3 by @dependabot in #416
- Bump github.com/aws/aws-sdk-go from 1.44.2 to 1.44.4 by @dependabot in #418
- chore(deps): Included dependency review by @naveensrinivasan in #406
- Call ValidReference in all KMS cases by @imjasonh in #419
- Bump github.com/aws/aws-sdk-go from 1.44.4 to 1.44.5 by @dependabot in #420
- Bump github.com/go-rod/rod from 0.106.4 to 0.106.5 by @dependabot in #421
- Bump github.com/aws/aws-sdk-go from 1.44.5 to 1.44.7 by @dependabot in #422
- Bump github.com/aws/aws-sdk-go from 1.44.7 to 1.44.8 by @dependabot in #423
- Bump github.com/aws/aws-sdk-go from 1.44.8 to 1.44.9 by @dependabot in #424
- Remove copy of OAuth success HTML by @imjasonh in #425
- Bump github.com/go-rod/rod from 0.106.5 to 0.106.6 by @dependabot in #427
- Bump github.com/aws/aws-sdk-go from 1.44.9 to 1.44.10 by @dependabot in #428
- Bump github.com/Azure/azure-sdk-for-go from 63.4.0+incompatible to 64.0.0+incompatible by @dependabot in #429
- Bump github.com/aws/aws-sdk-go from 1.44.10 to 1.44.11 by @dependabot in #432
- Bump golangci/golangci-lint-action from 3.1.0 to 3.2.0 by @dependabot in #433
- Bump github.com/aws/aws-sdk-go from 1.44.11 to 1.44.12 by @dependabot in #434
- Bump github/codeql-action from 2.1.9 to 2.1.10 by @dependabot in #431
- Bump github.com/coreos/go-oidc/v3 from 3.1.0 to 3.2.0 by @dependabot in #437
- Add method to unmarshal certificates with a limit by @haydentherapper in #430
- Add unsafe verifier to verify signatures with SHA1 digests by @haydentherapper in #441
- Bump github.com/aws/aws-sdk-go from 1.44.12 to 1.44.13 by @dependabot in #440
- Bump github/codeql-action from 75b4f1c4669133dc294b06c279...
v1.2.0
What's Changed
- Moved dsse to fuzz dir by @naveensrinivasan in #214
- Bump github.com/Azure/azure-sdk-for-go from 60.3.0+incompatible to 61.0.0+incompatible by @dependabot in #215
- Fuzz - Fixed the panic that was caused by incorrect data by @naveensrinivasan in #213
- Bump github.com/aws/aws-sdk-go from 1.42.25 to 1.42.26 by @dependabot in #216
- Bump github.com/aws/aws-sdk-go from 1.42.26 to 1.42.27 by @dependabot in #217
- Bump github.com/aws/aws-sdk-go from 1.42.27 to 1.42.28 by @dependabot in #219
- Bump github.com/Azure/azure-sdk-for-go from 61.0.0+incompatible to 61.1.0+incompatible by @dependabot in #218
- Bump github.com/aws/aws-sdk-go from 1.42.28 to 1.42.29 by @dependabot in #220
- Bump github.com/aws/aws-sdk-go from 1.42.29 to 1.42.31 by @dependabot in #222
- pin actions by digest; update chrome install to use signed repo by @bobcallaway in #225
- Bump github.com/aws/aws-sdk-go from 1.42.31 to 1.42.32 by @dependabot in #224
- Bump github.com/aws/aws-sdk-go from 1.42.32 to 1.42.33 by @dependabot in #227
- Bump github/codeql-action from 300c8b6dcbaf905eb250b06113e2e62c340a2d20 to 1.0.27 by @dependabot in #226
- Fix: verify with HashiVault KMS by @blz-ea in #229
- Bump github.com/aws/aws-sdk-go from 1.42.33 to 1.42.34 by @dependabot in #230
- Bump github.com/Azure/azure-sdk-for-go from 61.1.0+incompatible to 61.2.0+incompatible by @dependabot in #231
- KMS: Change how the Azure authentication method is handled by @simongottschlag in #228
- Bump github.com/aws/aws-sdk-go from 1.42.34 to 1.42.35 by @dependabot in #232
- Bump github.com/Azure/go-autorest/autorest from 0.11.22 to 0.11.24 by @dependabot in #233
- Drop SHA1, SHA224 for RSA-PSS/PKCS#1, enforce for RSA-PKCS#1 by @haydentherapper in #234
- Bump github/codeql-action from 1.0.27 to 1.0.28 by @dependabot in #236
- Bump github.com/aws/aws-sdk-go from 1.42.35 to 1.42.36 by @dependabot in #235
- Bump github.com/google/go-cmp from 0.5.6 to 0.5.7 by @dependabot in #237
- Bump github.com/aws/aws-sdk-go from 1.42.36 to 1.42.37 by @dependabot in #238
- Bump github.com/Azure/azure-sdk-for-go from 61.2.0+incompatible to 61.3.0+incompatible by @dependabot in #239
- Fix minor typos for HashiCorp by @jbayer in #240
- Bump github.com/aws/aws-sdk-go from 1.42.37 to 1.42.38 by @dependabot in #242
- Bump github/codeql-action from 1.0.28 to 1.0.29 by @dependabot in #241
- Add subject key ID calculation from public key by @haydentherapper in #243
- Bump github.com/aws/aws-sdk-go from 1.42.38 to 1.42.39 by @dependabot in #245
- Bump github/codeql-action from 1.0.29 to 1.0.30 by @dependabot in #244
- Bump github.com/aws/aws-sdk-go from 1.42.39 to 1.42.40 by @dependabot in #248
- Wire up html page passed in for interactive OIDC callback server by @n3wscott in #247
- Bump github.com/aws/aws-sdk-go from 1.42.40 to 1.42.41 by @dependabot in #250
- Bump github.com/aws/aws-sdk-go from 1.42.41 to 1.42.42 by @dependabot in #251
- Bump github.com/aws/aws-sdk-go from 1.42.42 to 1.42.43 by @dependabot in #252
- Add oidc login to vault by @sudo-bmitch in #249
- Bump github/codeql-action from 1.0.30 to 1.0.31 by @dependabot in #253
- Bump github.com/aws/aws-sdk-go from 1.42.43 to 1.42.44 by @dependabot in #254
- Bump github.com/Azure/azure-sdk-for-go from 61.3.0+incompatible to 61.4.0+incompatible by @dependabot in #255
- Skip strict check on PKCE discovery claim on Azure by @bobcallaway in #246
- Add ability to specify key version for Hashivault by @bobcallaway in #256
- update deps by @dekkagaijin in #257
- Bump github.com/aws/aws-sdk-go from 1.42.45 to 1.42.46 by @dependabot in #258
- Bump cloud.google.com/go/kms from 1.1.0 to 1.2.0 by @dependabot in #259
- return version of Vault key via functional option by @bobcallaway in #260
- Bump github/codeql-action from 1.0.31 to 1.0.32 by @dependabot in #261
- Bump github.com/aws/aws-sdk-go from 1.42.46 to 1.42.47 by @dependabot in #262
- Bump github.com/aws/aws-sdk-go from 1.42.47 to 1.42.48 by @dependabot in #264
- Bump github.com/go-rod/rod from 0.101.8 to 0.102.0 by @dependabot in #265
- Bump github.com/aws/aws-sdk-go from 1.42.48 to 1.42.49 by @dependabot in #267
- Bump actions/setup-go from 2.1.5 to 2.2.0 by @dependabot in #266
- Bump github.com/aws/aws-sdk-go from 1.42.49 to 1.42.50 by @dependabot in #268
- Bump github.com/go-rod/rod from 0.102.0 to 0.102.1 by @dependabot in #271
- Bump github.com/aws/aws-sdk-go from 1.42.50 to 1.42.51 by @dependabot in #270
- Bump github/codeql-action from 1.0.32 to 1.1.0 by @dependabot in #269
- Bump github.com/aws/aws-sdk-go from 1.42.51 to 1.42.52 by @dependabot in #272
- Bump github.com/Azure/azure-sdk-for-go from 61.4.0+incompatible to 61.5.0+incompatible by @dependabot in #273
- Bump cloud.google.com/go/kms from 1.2.0 to 1.3.0 by @dependabot in #274
- Bump github.com/aws/aws-sdk-go from 1.42.52 to 1.42.53 by @dependabot in #275
- Bump github.com/aws/aws-sdk-go from 1.42.53 to 1.43.0 by @dependabot in #281
- Bump github/codeql-action from 1.1.0 to 1.1.2 by @dependabot in #280
- pkg/signature/kms doesn't depend on kms impls by @imjasonh in #276
- remove unmaintained test dependency with invalid license by @bobcallaway in #279
- move e2e tests inline with various implementation packages by @bobcallaway in #282
- feat(kms): add supported providers func by @Dentrax in #277
- Bump github.com/aws/aws-sdk-go from 1.43.0 to 1.43.1 by @dependabot in #283
- Bump github.com/Azure/azure-sdk-for-go from 61.5.0+incompatible to 61.6.0+incompatible by @dependabot in #284
- Bump github.com/aws/aws-sdk-go from 1.43.1 to 1.43.2 by @dependabot in #285
- Bump github.com/aws/aws-sdk-go from 1.43.2 to 1.43.3 by @dependabot in #286
- Bump github.com/aws/aws-sdk-go from 1.43.3 to 1.43.4 by @dependabot in #287
- Permit usage of signing keys with
aws-us-gov
arn partitions by @chaospuppy in #289 - Bump github/codeql-action from 1.1.2 to 1.1.3 by @dependabot in #291
- Bump github.com/aws/aws-sdk-go from 1.43.4 to 1.43.5 by @dependabot in #292
- update permissions for codeql by @bobcallaway in #293
- Bump github.com/aws/aws-sdk-go from 1.43.5 to 1.43.6 by @dependabot in #295
- Bump golangci/golangci-lint-action from 2.5.2 to 3 by @dependabot in #294
- Bump hashicorp vault to 1.4.0. by @dlorenc in #297
- Bump github.com/hashicorp/vault/api from 1.4.0 to 1.4.1 by @dependabot in #298
- Explicitly run the go setup action. by @dlorenc in #299
- Bump github.com/secure-systems-lab/go-securesystemslib from 0.3.0 to 0.3.1 by @dependabot in #304
- Bump golangci/golangci-lint-action from 3.0.0 to 3.1.0 by @dependabot in #300
- Bump actions/...
v1.1.0
What's Changed
- Idp specific default flows by @houdini91 in #123
- Bump github.com/aws/aws-sdk-go from 1.42.1 to 1.42.2 by @dependabot in #139
- Bump github.com/aws/aws-sdk-go from 1.42.2 to 1.42.3 by @dependabot in #140
- Bump github.com/google/go-containerregistry from 0.6.0 to 0.7.0 by @dependabot in #142
- Bump github.com/aws/aws-sdk-go from 1.42.3 to 1.42.4 by @dependabot in #143
- expose
innerWrapper
asVerifierAdapter
by @dekkagaijin in #144 - also expose the wrapped verifier in
VerifierAdapter
by @dekkagaijin in #145 - Bump github.com/aws/aws-sdk-go from 1.42.4 to 1.42.5 by @dependabot in #147
- Feat : Fuzzing by @naveensrinivasan in #146
- Linter - Included linter check for doc rules by @naveensrinivasan in #148
- Bump github.com/aws/aws-sdk-go from 1.42.5 to 1.42.7 by @dependabot in #150
- update deps by @dekkagaijin in #151
- Bump github.com/aws/aws-sdk-go from 1.42.8 to 1.42.9 by @dependabot in #152
- Move the ssh signing/verification utilities to sigstore from rekor. by @dlorenc in #141
- Bump github.com/aws/aws-sdk-go from 1.42.9 to 1.42.10 by @dependabot in #153
- Fix revive lint warnings. by @dlorenc in #156
- Included fuzzing for more cryptoutils by @naveensrinivasan in #157
- Bump github.com/aws/aws-sdk-go from 1.42.10 to 1.42.11 by @dependabot in #161
- hack: add hack/tools to hold non required dependencies/tools for the project by @cpanato in #159
- update lint action by @dekkagaijin in #155
- Fuzzing password and some signature API by @naveensrinivasan in #160
- Bump github.com/aws/aws-sdk-go from 1.42.11 to 1.42.12 by @dependabot in #162
- Bump github.com/Azure/azure-sdk-for-go from 59.3.0+incompatible to 59.4.0+incompatible by @dependabot in #163
- Docs for Fuzzing by @naveensrinivasan in #165
- Fuzzing - Included RSA Targets by @naveensrinivasan in #164
- Bump github.com/aws/aws-sdk-go from 1.42.12 to 1.42.14 by @dependabot in #166
- Clean up lint errors by @bobcallaway in #167
- Included fuzz badge by @naveensrinivasan in #168
- Included CIFuzz by @naveensrinivasan in #169
- Bump github.com/aws/aws-sdk-go from 1.42.14 to 1.42.15 by @dependabot in #171
- Fuzzing for RSAPASS by @naveensrinivasan in #170
- Bump github.com/aws/aws-sdk-go from 1.42.15 to 1.42.16 by @dependabot in #174
- Upgraded go-securesystemslib from 0.1.0 to 0.2.0 by @naveensrinivasan in #178
- Bump github.com/aws/aws-sdk-go from 1.42.16 to 1.42.17 by @dependabot in #176
- Additional corpus for ecdsa and ed25519 by @naveensrinivasan in #177
- Fuzz testing DSSE by @naveensrinivasan in #173
- Bump github.com/aws/aws-sdk-go from 1.42.17 to 1.42.18 by @dependabot in #180
- Bump github.com/Azure/azure-sdk-for-go from 59.4.0+incompatible to 60.0.0+incompatible by @dependabot in #179
- Updatathon by @dekkagaijin in #181
- Bump github.com/ReneKroon/ttlcache/v2 from 2.9.0 to 2.10.0 by @dependabot in #184
- Bump github.com/aws/aws-sdk-go from 1.42.19 to 1.42.20 by @dependabot in #187
- Bump actions/upload-artifact from 2.2.4 to 2.3.0 by @dependabot in #185
- bump github.com/secure-systems-lab/go-securesystemslib to v0.3.0 by @dekkagaijin in #189
- bump the rest of the deps by @dekkagaijin in #190
- fix wrong return value in error case by @bobcallaway in #192
- Bump github.com/aws/aws-sdk-go from 1.42.20 to 1.42.21 by @dependabot in #194
- Bump github.com/aws/aws-sdk-go from 1.42.21 to 1.42.22 by @dependabot in #195
- Bump github.com/Azure/azure-sdk-for-go from 60.0.0+incompatible to 60.1.0+incompatible by @dependabot in #196
- Fuzz - Fixes nil data by @naveensrinivasan in #197
- Bump github.com/aws/aws-sdk-go from 1.42.22 to 1.42.23 by @dependabot in #201
- Bump actions/upload-artifact from 2.3.0 to 2.3.1 by @dependabot in #202
- Bump github.com/Azure/azure-sdk-for-go from 60.1.0+incompatible to 60.2.0+incompatible by @dependabot in #204
- Dsse multi signature wrapper by @houdini91 in #203
- Bump github.com/ReneKroon/ttlcache/v2 from 2.10.0 to 2.11.0 by @dependabot in #206
- Bump github.com/aws/aws-sdk-go from 1.42.23 to 1.42.24 by @dependabot in #207
- Bump github.com/aws/aws-sdk-go from 1.42.24 to 1.42.25 by @dependabot in #208
- Bump github.com/hashicorp/vault/api from 1.3.0 to 1.3.1 by @dependabot in #209
- Bump github.com/Azure/azure-sdk-for-go from 60.2.0+incompatible to 60.3.0+incompatible by @dependabot in #210
- Fuzz- Fixes the invalid UTF-8 string for DSSE by @naveensrinivasan in #212
New Contributors
- @houdini91 made their first contribution in #123
Full Changelog: v1.0.1...v1.1.0
v1.0.1
What's Changed
- Make SimpleContainerImage struct accesible for tekton chains by @priyawadhwa in #124
- (fix): Fix vault integration to work with rotated keys by @rjbrown57 in #125
- Create dependabot.yml by @naveensrinivasan in #127
- Fix the azure KMS provider by @dlorenc in #126
- Bump actions/checkout from 2.3.4 to 2.4.0 by @dependabot in #128
- Bump github.com/go-test/deep from 1.0.7 to 1.0.8 by @dependabot in #129
- Bump github.com/aws/aws-sdk-go from 1.40.7 to 1.41.19 by @dependabot in #130
- Bump cloud.google.com/go from 0.88.0 to 0.97.0 by @dependabot in #134
- Bump github.com/ReneKroon/ttlcache/v2 from 2.7.0 to 2.9.0 by @dependabot in #132
- Bump github.com/coreos/go-oidc/v3 from 3.0.0 to 3.1.0 by @dependabot in #133
- Bump github.com/google/go-containerregistry from 0.5.1 to 0.6.0 by @dependabot in #135
- Bump github.com/hashicorp/vault/api from 1.1.1 to 1.3.0 by @dependabot in #131
- Bump github.com/aws/aws-sdk-go from 1.41.19 to 1.42.0 by @dependabot in #136
- Bump github.com/aws/aws-sdk-go from 1.42.0 to 1.42.1 by @dependabot in #137
New Contributors
- @rjbrown57 made their first contribution in #125
- @naveensrinivasan made their first contribution in #127
- @dependabot made their first contribution in #128
Full Changelog: v1.0.0...v1.0.1
v1.0.0
What's Changed
- Missed a couple of renames by @lukehinds in #1
- User can use toml config for cert details by @lukehinds in #2
- OIDC by @lukehinds in #3
- readme, gitignore by @lukehinds in #4
- Project Rename by @lukehinds in #5
- Project refactor in prep for rewrite by @lukehinds in #7
- Key generation code by @lukehinds in #9
- Fix lint errors by @lukehinds in #12
- Set up CI by @lukehinds in #11
- Return PubK in correct type by @lukehinds in #13
- Client port by @lukehinds in #14
- Return the response so we can handle specific status codes by @lukehinds in #15
- Bind flags with PreRun by @lukehinds in #18
- Rename clients by @lukehinds in #20
- Implements file MIME checking by @lukehinds in #21
- Delete DS_Store by @lukehinds in #22
- Implement rekor log entry by @lukehinds in #23
- Update copyright statement by @dekkagaijin in #25
- Device flow! by @dlorenc in #24
- Add
signature
library by @dekkagaijin in #26 - Add Security Section by @lukehinds in #29
- cmd: add version command by @cpanato in #31
- Rename signature payloads to be more descriptive for users by @dekkagaijin in #32
- Use
crypto.PublicKey
in favor of*ecdsa.PublicKey
by @dekkagaijin in #33 - remove Ed25519 until we can make it work sanely with Rekor by @dekkagaijin in #34
- Signers should return the payloads which were actually signed by @dekkagaijin in #35
- update boilerplate header and apply go fmt by @cpanato in #37
- ci/boilerplate: fix bolierplate check by @cpanato in #39
- go: update go version to use 1.16.x by @cpanato in #36
- Move kms package from cosign to sigstore by @priyawadhwa in #41
- Leverage the
signature
package for signing by @dekkagaijin in #38 - Implement code owners by @lukehinds in #40
- use RSA-PSS instead of RSA-PKCS#1 v1.5 signature scheme by @dekkagaijin in #43
- feat: add vault transit kms engine by @RichiCoder1 in #44
- Bump the rekor dependency. by @dlorenc in #47
- Allow specifying the full key version. by @dlorenc in #45
- some vault fixes by @RichiCoder1 in #49
- Better define sigstores purpose by @lukehinds in #52
- remove optional algorithm; ensure CI and Makefile are correct by @bobcallaway in #57
- log error message but continue with OAuth2 flow if browser auto-open … by @bobcallaway in #56
- change to rekor.sigstore.dev by @bobcallaway in #60
- remove gosec since it is handled by golangci-lint by @bobcallaway in #58
- Add support for ed25519 based keys by @priyawadhwa in #51
- Bump rekor for the new API changes. by @dlorenc in #61
- Move all rekor code to tlog by @lukehinds in #63
- Refact key tlog by @lukehinds in #65
- Add support for static identity tokens supplied directly by the caller. by @dlorenc in #64
- enable transit secret engine at another path by @developer-guy in #67
- Refactor IDToken handling to support claims based on fields other tha… by @dlorenc in #68
- cert.Subject is not populated, return serial instead by @lukehinds in #71
- Allow the OOB authentication flow when we can't open a browser. by @dlorenc in #62
- convert signature library to implement crypto.Signer interface by @bobcallaway in #69
- use new path to GetRekorClient by @bobcallaway in #73
- Fix for Error: error during PEM decoding by @lukehinds in #78
- Use
output
to save client cert file locally by @lukehinds in #79 - Add formatted URL for rekor entry by @lukehinds in #80
- Add PublicKeyProvider interface by @bobcallaway in #75
- Bump rekor. by @dlorenc in #82
- Also output the signature if required by @lukehinds in #83
- filehandler: add application/x-executable to supported mimetype by @cpanato in #84
- stop using signerverifier to get access to publickeyprovider by @bobcallaway in #85
- compute crc over digest instead of message by @bobcallaway in #86
- We should use the client ID from the oauth config, not viper. by @dlorenc in #87
- Don't use pointers for ed25519 keys by @dekkagaijin in #88
- AWS KMS Support by @codysoyland in #74
- Remove
cmd/
, clean up unused code by @dekkagaijin in #90 - Remove
pkg/tlog
, rungo mod tidy
by @dekkagaijin in #91 - update go modules, run
go mod tidy
by @dekkagaijin in #94 - update github actions to latest versions by @dekkagaijin in #93
- change in-memory signers to implement crypto.Signer by @bobcallaway in #92
- Add initial Azure KMS support by @cpanato in #76
- Remove
pkg/util
directory by @dekkagaijin in #95 - Implement wrappers/converters for the DSSE signing spec. by @dlorenc in #96
- Add tests for
pkg/cryptoutils
by @dekkagaijin in #99 - More
pkg/cryptoutils
tests, add a generator for ECDSA keypairs by @dekkagaijin in #100 - ENCRYPTED COSIGN PRIVATE KEY -> ENCRYPTED SIGSTORE PRIVATE KEY by @dekkagaijin in #101
- remove fulcio client code by @dekkagaijin in #103
- small update in the makefile by @cpanato in #105
- default to P-256 curve again by @dekkagaijin in #106
- Add missing code of conduct (stock sigstore one) by @lukehinds in #107
- leverage Vault token helpers approach while obtaining Vault token by @developer-guy in #104
- Transit backend path is hardcoded for some operations of the KMS Vault client by @LeSuisse in #102
- Switch DSSE provider to go-securesystemslib by @adityasaky in #111
- pass by reference instead of pointer so correct redirect_uri is known by @bobcallaway in #114
- Pin localstack in e2e tests (fixes #112) by @codysoyland in #115
- Fix typo/readability by @ocdtrekkie in #116
- Modularise CI by @lukehinds in #118
- Update readme in anticipation of 1.0 by @lukehinds in #119
- Integration tests for dex / OIDConnect by @lukehinds in #110
- Change redirect listener to use ephemeral port by @bobcallaway in #120
New Contributors
- @lukehinds made their first contribution in #1
- @dekkagaijin made their first contribution in #25
- @dlorenc made their first contribution in #24
- @cpanato made their first contribution in #31
- @priyawadhwa made their first contribution in #41
- @RichiCoder1 made their first contribution in #44
- @bobcallaway made their first contribut...