Releases: ecadlabs/signatory
v1.1.8
v1.1.8-beta2
Changelog
- c9add9a gotez v2.0.6
v1.1.8-RC0
v1.1.8-beta1
Changelog
- 5464986 gotez version bump
v1.1.7 Oxford2 support
v1.1.6-rc
v1.1.5
Summary
We're thrilled to roll out this latest release, which brings a game-changing feature: Hashicorp Vault integration as a key store! This paves the way for more secure and efficient signing operations. This release also includes a slew of bug fixes and enhancements that make the system more robust than ever.
Hashicorp Vault Support
Signatory can now integrate with Hashicorp Vault as a remote backend for signing operations. Setting this up is a breeze—just configure Signatory with the necessary Vault details such as address
, roleID
, secretID
, and transitConfig
. For step-by-step instructions on how to run a development Vault and set up Signatory, check out our Vault Documentation.
A huge shoutout to Dzianis Andreyenka@denisandreenko for contributing this awesome feature.
Multistage Docker Builds
We've made a significant upgrade to our build process by implementing Docker multistage builds and cache busting techniques. These changes have not only slimmed down our Docker images by approximately 25% but also expedited the build process noticeably.
Special thanks to Dzianis Andreyenka@denisandreenko for spearheading these improvements.
What's Changed
- docs update gcp kms vault native authentication by @stephengaudet in #438
- Bump github.com/aws/aws-sdk-go from 1.44.319 to 1.44.323 by @dependabot in #436
- replace slash with hyphen for valid image tags by @stephengaudet in #444
- Bump github.com/go-playground/validator/v10 from 10.15.0 to 10.15.1 by @dependabot in #440
- Bump google.golang.org/api from 0.136.0 to 0.138.0 by @dependabot in #441
- Bump github.com/aws/aws-sdk-go from 1.44.323 to 1.44.328 by @dependabot in #442
- Bump github.com/google/uuid from 1.3.0 to 1.3.1 by @dependabot in #443
- hashicorp vault support by @denisandreenko in #439
- Update testenvs by @stephengaudet in #450
- multistage build (enhancement) by @denisandreenko in #447
- chore: updated go dependencies by @GImbrailo in #468
New Contributors
- @denisandreenko made their first contribution in #439
- @GImbrailo made their first contribution in #468
Changelog
- a9d6ef6 Bump github.com/aws/aws-sdk-go from 1.44.319 to 1.44.323 (#436)
- 652ee43 Bump github.com/aws/aws-sdk-go from 1.44.323 to 1.44.328 (#442)
- 9573818 Bump github.com/go-playground/validator/v10 from 10.15.0 to 10.15.1 (#440)
- be801b2 Bump github.com/google/uuid from 1.3.0 to 1.3.1 (#443)
- c3c407b Bump google.golang.org/api from 0.136.0 to 0.138.0 (#441)
- b6d5be8 Update integration test docker-compose.yml
- a70c527 Update testenvs (#450)
- 50d6129 chore: updated go dependencies (#468)
- ddf37fa hashicorp vault support (#439)
- 17caf86 multistage build (enhancement) (#447)
- e96fd26 replace slash with hyphen for valid image tags (#444)
- cd4f380 update gcp kms vault native authentication (#438)
Full Changelog: v1.1.4...v1.1.5
v1.1.4
Changelog
- 0fc5162 Bump github.com/aws/aws-sdk-go from 1.44.305 to 1.44.318 (#430)
- cc2c737 Bump github.com/go-playground/validator/v10 from 10.14.1 to 10.15.0 (#429)
- 0cd8391 Bump golang.org/x/oauth2 from 0.10.0 to 0.11.0 (#428)
- 97cd7e1 Bump golang.org/x/term from 0.10.0 to 0.11.0 (#427)
- 1ac0b0c Coverage focused testcases (#426)
- 7374c12 Upgrade go to version v1.21.0 and all dependencies (#433)
- e6b1529 avoid device or resource busy error (#437)
v1.1.4-rc
Changelog
- 0fc5162 Bump github.com/aws/aws-sdk-go from 1.44.305 to 1.44.318 (#430)
- cc2c737 Bump github.com/go-playground/validator/v10 from 10.14.1 to 10.15.0 (#429)
- 0cd8391 Bump golang.org/x/oauth2 from 0.10.0 to 0.11.0 (#428)
- 97cd7e1 Bump golang.org/x/term from 0.10.0 to 0.11.0 (#427)
- 1ac0b0c Coverage focused testcases (#426)
- 7374c12 Upgrade go to version v1.21.0 and all dependencies (#433)
- 38f44c3 avoid device or resource busy error
v1.1.3
Changelog
- b51a0ec Bump cloud.google.com/go/kms from 1.9.0 to 1.15.0 (#417)
- 31a0709 Bump github.com/aws/aws-sdk-go from 1.44.219 to 1.44.305 (#400)
- a7de510 Bump github.com/decred/dcrd/dcrec/secp256k1/v4 from 4.1.0 to 4.2.0 (#418)
- f56ec1a Bump github.com/go-playground/validator/v10 from 10.11.2 to 10.14.1 (#392)
- 4230b9a Bump github.com/golang-jwt/jwt/v5 from 5.0.0-rc.1 to 5.0.0 (#393)
- c8911ac Bump github.com/prometheus/client_golang from 1.14.0 to 1.16.0 (#406)
- 05f308c Bump github.com/sirupsen/logrus from 1.9.0 to 1.9.3 (#394)
- b260264 Bump github.com/spf13/cobra from 1.6.1 to 1.7.0 (#409)
- 771d62a Bump github.com/stretchr/testify from 1.8.2 to 1.8.4 (#396)
- 08f5f58 Bump golang.org/x/crypto from 0.7.0 to 0.11.0 (#408)
- 6cc9d24 Bump google.golang.org/api from 0.112.0 to 0.134.0 (#416)
- 460ba53 Integrationtest codecoverage (#380)
- e76b84c add dependabot config with separator as hyphen (#390)
- 184de99 combined code coverage (#413)
- 1c991b3 dependabot - disable npm, schedule go monday aft (#415)
- 8469114 fix release changelog, currently only lists last commit (#424)
- 16b4da9 integration tests - bump octez version to 17.2 (#414)
- ad58b17 npm - replace slash with hyphen in branch name (#399)
- b03183a use goreleaser conditionals properly (#422)