v1.1.8

Changelog

• 51b5d4e chore: add ansible-vault to gitignore

v1.1.8-beta2

Changelog

• c9add9a gotez v2.0.6

v1.1.8-RC0

Changelog

• 98a39d7 gotez v2.0.5 with ParisB support (#496)

v1.1.8-beta1

Changelog

• 5464986 gotez version bump

v1.1.7 Oxford2 support

This release brings support for Oxford2

Changelog

• e38fcbf Gotez v2 (#495)
• bf18dc0 add hashi vault integration tests (#452)
• 19a3a06 deps versions bump (#488)

v1.1.6-rc

Changelog

• e38fcbf Gotez v2 (#495)
• bf18dc0 add hashi vault integration tests (#452)
• 19a3a06 deps versions bump (#488)

v1.1.5

Summary

We're thrilled to roll out this latest release, which brings a game-changing feature: Hashicorp Vault integration as a key store! This paves the way for more secure and efficient signing operations. This release also includes a slew of bug fixes and enhancements that make the system more robust than ever.

Hashicorp Vault Support

Signatory can now integrate with Hashicorp Vault as a remote backend for signing operations. Setting this up is a breeze—just configure Signatory with the necessary Vault details such as address, roleID, secretID, and transitConfig. For step-by-step instructions on how to run a development Vault and set up Signatory, check out our Vault Documentation.

A huge shoutout to Dzianis Andreyenka@denisandreenko for contributing this awesome feature.

Multistage Docker Builds

We've made a significant upgrade to our build process by implementing Docker multistage builds and cache busting techniques. These changes have not only slimmed down our Docker images by approximately 25% but also expedited the build process noticeably.

Special thanks to Dzianis Andreyenka@denisandreenko for spearheading these improvements.

What's Changed

• docs update gcp kms vault native authentication by @stephengaudet in #438
• Bump github.com/aws/aws-sdk-go from 1.44.319 to 1.44.323 by @dependabot in #436
• replace slash with hyphen for valid image tags by @stephengaudet in #444
• Bump github.com/go-playground/validator/v10 from 10.15.0 to 10.15.1 by @dependabot in #440
• Bump google.golang.org/api from 0.136.0 to 0.138.0 by @dependabot in #441
• Bump github.com/aws/aws-sdk-go from 1.44.323 to 1.44.328 by @dependabot in #442
• Bump github.com/google/uuid from 1.3.0 to 1.3.1 by @dependabot in #443
• hashicorp vault support by @denisandreenko in #439
• Update testenvs by @stephengaudet in #450
• multistage build (enhancement) by @denisandreenko in #447
• chore: updated go dependencies by @GImbrailo in #468

New Contributors

• @denisandreenko made their first contribution in #439
• @GImbrailo made their first contribution in #468

Changelog

• a9d6ef6 Bump github.com/aws/aws-sdk-go from 1.44.319 to 1.44.323 (#436)
• 652ee43 Bump github.com/aws/aws-sdk-go from 1.44.323 to 1.44.328 (#442)
• 9573818 Bump github.com/go-playground/validator/v10 from 10.15.0 to 10.15.1 (#440)
• be801b2 Bump github.com/google/uuid from 1.3.0 to 1.3.1 (#443)
• c3c407b Bump google.golang.org/api from 0.136.0 to 0.138.0 (#441)
• b6d5be8 Update integration test docker-compose.yml
• a70c527 Update testenvs (#450)
• 50d6129 chore: updated go dependencies (#468)
• ddf37fa hashicorp vault support (#439)
• 17caf86 multistage build (enhancement) (#447)
• e96fd26 replace slash with hyphen for valid image tags (#444)
• cd4f380 update gcp kms vault native authentication (#438)

Full Changelog: v1.1.4...v1.1.5

v1.1.4

Changelog

• 0fc5162 Bump github.com/aws/aws-sdk-go from 1.44.305 to 1.44.318 (#430)
• cc2c737 Bump github.com/go-playground/validator/v10 from 10.14.1 to 10.15.0 (#429)
• 0cd8391 Bump golang.org/x/oauth2 from 0.10.0 to 0.11.0 (#428)
• 97cd7e1 Bump golang.org/x/term from 0.10.0 to 0.11.0 (#427)
• 1ac0b0c Coverage focused testcases (#426)
• 7374c12 Upgrade go to version v1.21.0 and all dependencies (#433)
• e6b1529 avoid device or resource busy error (#437)

v1.1.4-rc

Changelog

• 0fc5162 Bump github.com/aws/aws-sdk-go from 1.44.305 to 1.44.318 (#430)
• cc2c737 Bump github.com/go-playground/validator/v10 from 10.14.1 to 10.15.0 (#429)
• 0cd8391 Bump golang.org/x/oauth2 from 0.10.0 to 0.11.0 (#428)
• 97cd7e1 Bump golang.org/x/term from 0.10.0 to 0.11.0 (#427)
• 1ac0b0c Coverage focused testcases (#426)
• 7374c12 Upgrade go to version v1.21.0 and all dependencies (#433)
• 38f44c3 avoid device or resource busy error

v1.1.3

Changelog

• b51a0ec Bump cloud.google.com/go/kms from 1.9.0 to 1.15.0 (#417)
• 31a0709 Bump github.com/aws/aws-sdk-go from 1.44.219 to 1.44.305 (#400)
• a7de510 Bump github.com/decred/dcrd/dcrec/secp256k1/v4 from 4.1.0 to 4.2.0 (#418)
• f56ec1a Bump github.com/go-playground/validator/v10 from 10.11.2 to 10.14.1 (#392)
• 4230b9a Bump github.com/golang-jwt/jwt/v5 from 5.0.0-rc.1 to 5.0.0 (#393)
• c8911ac Bump github.com/prometheus/client_golang from 1.14.0 to 1.16.0 (#406)
• 05f308c Bump github.com/sirupsen/logrus from 1.9.0 to 1.9.3 (#394)
• b260264 Bump github.com/spf13/cobra from 1.6.1 to 1.7.0 (#409)
• 771d62a Bump github.com/stretchr/testify from 1.8.2 to 1.8.4 (#396)
• 08f5f58 Bump golang.org/x/crypto from 0.7.0 to 0.11.0 (#408)
• 6cc9d24 Bump google.golang.org/api from 0.112.0 to 0.134.0 (#416)
• 460ba53 Integrationtest codecoverage (#380)
• e76b84c add dependabot config with separator as hyphen (#390)
• 184de99 combined code coverage (#413)
• 1c991b3 dependabot - disable npm, schedule go monday aft (#415)
• 8469114 fix release changelog, currently only lists last commit (#424)
• 16b4da9 integration tests - bump octez version to 17.2 (#414)
• ad58b17 npm - replace slash with hyphen in branch name (#399)
• b03183a use goreleaser conditionals properly (#422)