Releases: sigstore/fulcio
v0.5.2
What's Changed
- Bump actions/setup-go from 3.2.0 to 3.2.1 by @dependabot in #677
- Bump github.com/prometheus/common from 0.35.0 to 0.36.0 by @dependabot in #678
- Bump cloud.google.com/go/security from 1.4.0 to 1.4.1 by @dependabot in #681
- Bump google.golang.org/api from 0.86.0 to 0.87.0 by @dependabot in #680
- Bump google.golang.org/grpc from 1.47.0 to 1.48.0 by @dependabot in #682
- Bump github.com/googleapis/api-linter from 1.33.1 to 1.33.2 in /hack/tools by @dependabot in #685
- Bump github/codeql-action from 2.1.15 to 2.1.16 by @dependabot in #684
- Bump golang from 1.18.3 to 1.18.4 by @dependabot in #683
- Bump github.com/prometheus/common from 0.36.0 to 0.37.0 by @dependabot in #687
- Bump actions/dependency-review-action from 2.0.2 to 2.0.4 by @dependabot in #686
- Bump go.step.sm/crypto from 0.16.2 to 0.17.0 by @dependabot in #688
- bump cosign to v1.9.0 by @bobcallaway in #692
- Bump github.com/grpc-ecosystem/grpc-gateway/v2 from 2.10.3 to 2.11.0 by @dependabot in #695
- Bump google.golang.org/api from 0.87.0 to 0.88.0 by @dependabot in #694
- Bump github.com/grpc-ecosystem/grpc-gateway/v2 from 2.10.3 to 2.11.0 in /hack/tools by @dependabot in #696
- [NFC] docs/oidc: mark code blocks as JSON, minor syntax fixes by @woodruffw in #697
- ensure GetTrustBundle returns array of strings instead of a single string with newlines by @bobcallaway in #690
- update go builder and cosign image by @cpanato in #700
- Add CHANGELOG for 0.5.2 by @haydentherapper in #701
New Contributors
- @woodruffw made their first contribution in #697
Full Changelog: v0.5.1...v0.5.2
Thanks to all contributors!
v0.5.1
What's Changed
- Bump google.golang.org/api from 0.82.0 to 0.83.0 by @dependabot in #642
- Bump google.golang.org/api from 0.83.0 to 0.84.0 by @dependabot in #647
- Add interface for certs/signer fetching to remove mutex by @haydentherapper in #643
- change grpc response logger to debug level instead of error by @bobcallaway in #648
- Bump actions/dependency-review-action from 1.0.2 to 2.0.1 by @dependabot in #650
- Bump github.com/googleapis/api-linter from 1.32.1 to 1.32.2 in /hack/tools by @dependabot in #651
- Bump golang from
b203dc5
to1c3d22f
by @dependabot in #649 - Bump actions/dependency-review-action from 2.0.1 to 2.0.2 by @dependabot in #652
- Bump github.com/googleapis/api-linter from 1.32.2 to 1.32.3 in /hack/tools by @dependabot in #653
- Refactor in-memory signing CAs to use a single implementation by @haydentherapper in #644
- Bump github.com/prometheus/common from 0.34.0 to 0.35.0 by @dependabot in #655
- Bump github.com/spf13/cobra from 1.4.0 to 1.5.0 by @dependabot in #658
- Bump google.golang.org/api from 0.84.0 to 0.85.0 by @dependabot in #657
- Bump github/codeql-action from 2.1.12 to 2.1.13 by @dependabot in #656
- Bump github/codeql-action from 2.1.13 to 2.1.14 by @dependabot in #659
- Bump golang from
1c3d22f
to957001e
by @dependabot in #660 - Bump golang from
957001e
toa452d62
by @dependabot in #661 - Bump ossf/scorecard-action from 1.1.1 to 1.1.2 by @dependabot in #662
- Add Tink signing backend by @haydentherapper in #645
- Bump google.golang.org/api from 0.85.0 to 0.86.0 by @dependabot in #664
- Bump github/codeql-action from 2.1.14 to 2.1.15 by @dependabot in #663
- generate OpenAPI documents from protobuf by @bobcallaway in #666
- add dependabot hack to monitor for new protoc releases by @bobcallaway in #667
- Bump github.com/googleapis/api-linter from 1.32.3 to 1.33.0 in /hack/tools by @dependabot in #669
- Bump github.com/spiffe/go-spiffe/v2 from 2.1.0 to 2.1.1 by @dependabot in #668
- Update sigstore to pull in fixes by @haydentherapper in #671
- Add CORS support to HTTP endpoint by @bobcallaway in #670
- pipe all log messages to stdout for dev logger by @bobcallaway in #673
- Bump github.com/googleapis/api-linter from 1.33.0 to 1.33.1 in /hack/tools by @dependabot in #674
- add changelog for v0.5.1 by @cpanato in #675
Full Changelog: v0.5.0...v0.5.1
Thanks for all contributors!
v0.5.0
What's Changed
- Bump google.golang.org/api from 0.77.0 to 0.78.0 by @dependabot in #556
- Bump github.com/googleapis/api-linter from 1.31.1 to 1.31.2 in /hack/tools by @dependabot in #557
- Add new
Issuer
andPrincipal
abstractions by @nsmith5 in #558 - Add timeout to OIDC discovery by @nsmith5 in #560
- Refactor x509 extension embedding logic by @nsmith5 in #561
- Add client options testing by @nsmith5 in #562
- Bump google.golang.org/api from 0.78.0 to 0.79.0 by @dependabot in #566
- Bump github/codeql-action from 2.1.9 to 2.1.10 by @dependabot in #565
- update go to 1.17.10 by @cpanato in #567
- Remove unused
Subject
field fromCodeSigningCertificate
by @nsmith5 in #568 - Use GenerateSerialNumber from cryptoutils by @nsmith5 in #571
- Bump github.com/googleapis/api-linter from 1.31.2 to 1.32.0 in /hack/tools by @dependabot in #575
- Bump github.com/coreos/go-oidc/v3 from 3.1.0 to 3.2.0 by @dependabot in #574
- Update to use go1.18 by @cpanato in #576
- Small
ca
refactor by @nsmith5 in #569 - Bump golangci/golangci-lint-action from 3.1.0 to 3.2.0 by @dependabot in #573
- Bump github/codeql-action from 75b4f1c4669133dc294b06c2794e969efa2e5316 to 2.1.10 by @dependabot in #572
- googleca: Don't log all identities by @nsmith5 in #577
- Consume
identity.Principal
in CA abstraction by @nsmith5 in #570 - challenges: remove ParseCSR by @nsmith5 in #578
- identity: improve the documentation for Principal.Name() by @nsmith5 in #579
- Bump actions/dependency-review-action from 3f943b86c9a289f4e632c632695e2e0898d9d67d to 1 by @dependabot in #581
- Add some tests for challenges by @nsmith5 in #583
- Bump actions/setup-go from 3.0.0 to 3.1.0 by @dependabot in #582
- Bump github.com/prometheus/client_golang from 1.12.1 to 1.12.2 by @dependabot in #584
- Bump google.golang.org/grpc from 1.46.0 to 1.46.2 by @dependabot in #585
- Bump github.com/google/certificate-transparency-go from 1.1.2 to 1.1.3 by @dependabot in #586
- Skip tests that require network access with HERMETIC=true by @haydentherapper in #587
- Refactor challenge verification by @nsmith5 in #580
- Correct SPIFFE trust domain checking by @nsmith5 in #588
- Validate SPIFFE IDs and trust domains via library by @haydentherapper in #592
- Move domain validation checks for URI/Username to service startup by @haydentherapper in #590
- Bump google.golang.org/api from 0.79.0 to 0.80.0 by @dependabot in #595
- Bump go.step.sm/crypto from 0.16.1 to 0.16.2 by @dependabot in #594
- Bump github/codeql-action from 2.1.10 to 2.1.11 by @dependabot in #593
- Bump github.com/googleapis/api-linter from 1.32.0 to 1.32.1 in /hack/tools by @dependabot in #597
- cmd/app: remove dependency on deprecated github.com/pkg/errors by @zchee in #598
- Bump github.com/grpc-ecosystem/grpc-gateway/v2 from 2.10.0 to 2.10.1 by @dependabot in #600
- Bump github.com/grpc-ecosystem/grpc-gateway/v2 from 2.10.0 to 2.10.1 in /hack/tools by @dependabot in #601
- Added additional tests for CA implementations and OIDC by @haydentherapper in #602
- Bump actions/upload-artifact from 3.0.0 to 3.1.0 by @dependabot in #603
- Restict issuer claim mapping to email issuers by @nsmith5 in #606
- Add e2e test that tests IssuerClaim by @haydentherapper in #605
- Bump github.com/grpc-ecosystem/grpc-gateway/v2 from 2.10.1 to 2.10.2 in /hack/tools by @dependabot in #611
- Bump github.com/grpc-ecosystem/grpc-gateway/v2 from 2.10.1 to 2.10.2 by @dependabot in #610
- Bump actions/dependency-review-action from 1.0.1 to 1.0.2 by @dependabot in #609
- Bump google.golang.org/api from 0.80.0 to 0.81.0 by @dependabot in #614
- Bump cloud.google.com/go/security from 1.3.0 to 1.4.0 by @dependabot in #613
- Move github principal to its own package by @nsmith5 in #599
- Split pkg/server from pkg/api by @mtrmac in #616
- Bump ossf/scorecard-action from 1.0.4 to 1.1.0 by @dependabot in #618
- Update sigstore to pull in go-tuf security fixes by @haydentherapper in #617
- Move SPIFFE principal to its own package by @nsmith5 in #604
- Bump github.com/spf13/viper from 1.11.0 to 1.12.0 by @dependabot in #622
- Bump actions/setup-go from 3.1.0 to 3.2.0 by @dependabot in #621
- Move kubernetes principal to package by @nsmith5 in #619
- Bump gopkg.in/yaml.v3 from 3.0.0 to 3.0.1 by @dependabot in #623
- Make prometheus port configurable by @nsmith5 in #625
- Move email principal to package by @nsmith5 in #620
- Bump google.golang.org/grpc from 1.46.2 to 1.47.0 by @dependabot in #627
- Final challenge result removal 🎉 by @nsmith5 in #626
- Add API for fetching Fulcio configuration by @haydentherapper in #608
- Bump github.com/grpc-ecosystem/grpc-gateway/v2 from 2.10.2 to 2.10.3 in /hack/tools by @dependabot in #633
- Bump golang from 1.18.2 to 1.18.3 by @dependabot in #628
- Bump github.com/grpc-ecosystem/grpc-gateway/v2 from 2.10.2 to 2.10.3 by @dependabot in #632
- Bump google.golang.org/api from 0.81.0 to 0.82.0 by @dependabot in #631
- typo: Github -> GitHub by @imjasonh in #636
- update cross-builder image to use go1.18.3 by @cpanato in #635
- Bump ossf/scorecard-action from 1.1.0 to 1.1.1 by @dependabot in #630
- Bump github/codeql-action from 2.1.11 to 2.1.12 by @dependabot in #629
- Doc cleanup by @haydentherapper in #640
- add changelog for release v0.5.0 by @cpanato in #637
New Contributors
Full Changelog: v0.4.1...v0.5.0
Thanks for all contributors!
v0.4.1
What's Changed
- Bump google.golang.org/grpc from 1.45.0 to 1.46.0 by @dependabot in #541
- Bump github.com/googleapis/api-linter from 1.31.0 to 1.31.1 in /hack/tools by @dependabot in #546
- Bump github/codeql-action from 2.1.8 to 2.1.9 by @dependabot in #545
- Bump google.golang.org/api from 0.75.0 to 0.76.0 by @dependabot in #542
- Bump github.com/fsnotify/fsnotify from 1.5.3 to 1.5.4 by @dependabot in #543
- Bump github.com/google/go-cmp from 0.5.7 to 0.5.8 by @dependabot in #544
- Add @haydentherapper to CODEOWNERS by @bobcallaway in #548
- Fix key usage for issued certificates by @haydentherapper in #549
- chore(deps): Included dependency review by @naveensrinivasan in #540
- Add note about the status of the legacy HTTP API. by @znewman01 in #531
- Bump google.golang.org/api from 0.76.0 to 0.77.0 by @dependabot in #552
- add changelog for 0.4.1 release by @cpanato in #553
- update go builder image and cosign image by @cpanato in #554
- fix the digest image by @cpanato in #555
Full Changelog: v0.4.0...v0.4.1
Thanks for all contributors!
v0.4.0
What's Changed
- add changelog for v0.3.0 release by @cpanato in #508
- Add intermediate CA implementation with KMS-backed signer by @haydentherapper in #496
- Bump github/codeql-action from 2.1.7 to 2.1.8 by @dependabot in #513
- Embed SCTs in issued certificates by @haydentherapper in #507
- Bump github.com/spf13/viper from 1.10.1 to 1.11.0 by @dependabot in #516
- Update release images by @cpanato in #517
- Add documentation for CT log by @haydentherapper in #514
- examples: This adds example code on how to fetch a fulcio certificate by @Foxboron in #324
- add GRPC interface by @bobcallaway in #472
- Bump google.golang.org/protobuf from 1.27.1 to 1.28.0 in /hack/tools by @dependabot in #520
- Add documentation for setting up Fulcio instance by @haydentherapper in #521
- Bump actions/checkout from 3.0.0 to 3.0.1 by @dependabot in #522
- Remove checked in binary by @haydentherapper in #524
- Bump github.com/grpc-ecosystem/grpc-gateway/v2 from 2.8.0 to 2.10.0 by @dependabot in #523
- Fix null pointer crash and incorrect error statuses by @haydentherapper in #526
- Bump google.golang.org/grpc/cmd/protoc-gen-go-grpc from 1.1.0 to 1.2.0 in /hack/tools by @dependabot in #519
- Read public key of CT log from path to verify SCTs by @haydentherapper in #529
- Bump github.com/grpc-ecosystem/grpc-gateway/v2 from 2.8.0 to 2.10.0 in /hack/tools by @dependabot in #518
- Add CSR support for key delivery and proof of possession by @haydentherapper in #527
- Bump google.golang.org/api from 0.74.0 to 0.75.0 by @dependabot in #532
- Bump github.com/prometheus/common from 0.33.0 to 0.34.0 by @dependabot in #533
- Bump github.com/googleapis/api-linter from 1.30.1 to 1.31.0 in /hack/tools by @dependabot in #534
- Bump github.com/fsnotify/fsnotify from 1.5.1 to 1.5.3 by @dependabot in #537
- Bump codecov/codecov-action from 3.0.0 to 3.1.0 by @dependabot in #535
- Bump actions/checkout from 3.0.1 to 3.0.2 by @dependabot in #536
- add changelog for v0.4.0 by @cpanato in #530
New Contributors
Full Changelog: v0.3.0...v0.4.0
Thanks for all contributors!
v0.3.0
What's Changed
- Bump go.step.sm/crypto from 0.15.2 to 0.15.3 by @dependabot in #473
- Bump google.golang.org/api from 0.71.0 to 0.72.0 by @dependabot in #476
- Bump github/codeql-action from 1.1.4 to 1.1.5 by @dependabot in #477
- Bump github.com/stretchr/testify from 1.7.0 to 1.7.1 by @dependabot in #478
- Bump google.golang.org/api from 0.72.0 to 0.73.0 by @dependabot in #479
- Refactor API tests by @haydentherapper in #483
- Bump go.step.sm/crypto from 0.15.3 to 0.16.0 by @dependabot in #482
- Update Username OIDC flow based on comments by @haydentherapper in #463
- fix build date format for version command by @cpanato in #484
- Fix minor typos in README by @jspeed-meyers in #486
- Fix minor typos in security model README by @jspeed-meyers in #488
- Bump google.golang.org/protobuf from 1.27.1 to 1.28.0 by @dependabot in #485
- Fix certificate README typos by @jspeed-meyers in #487
- Bump github.com/prometheus/common from 0.32.1 to 0.33.0 by @dependabot in #491
- Add validation of public keys to prevent certifying weak keys by @haydentherapper in #490
- Add missing reader lock to File CA when reading certificate chain by @haydentherapper in #493
- Fix concurrency properly in File CA implementation by @haydentherapper in #495
- Bump google.golang.org/api from 0.73.0 to 0.74.0 by @dependabot in #499
- Bump github/codeql-action from 1.1.5 to 2.1.6 by @dependabot in #497
- Bump go.step.sm/crypto from 0.16.0 to 0.16.1 by @dependabot in #498
- Use provided HTTP client instead when fetching root cert by @imjasonh in #502
- Generate larger, compliant serial numbers by @haydentherapper in #500
- Bump github/codeql-action from 2.1.6 to 2.1.7 by @dependabot in #504
- Bump codecov/codecov-action from 2.1.0 to 3 by @dependabot in #505
- update cosign and golang-cross images by @cpanato in #506
New Contributors
- @jspeed-meyers made their first contribution in #486
- @imjasonh made their first contribution in #502
Full Changelog: v0.2.0...v0.3.0
Thanks for all contributors!
v0.2.0
What's Changed
- Script and process to generate OIDC config from federation directory. by @dlorenc in #139
- Add missing code of conduct (stock sigstore one) by @lukehinds in #153
- makefile: add rule to download and set swagger and make rule to build the dist by @cpanato in #154
- Bump cloud.google.com/go from 0.88.0 to 0.89.0 by @dependabot in #156
- fulcio: add version command by @cpanato in #155
- Bump cloud.google.com/go from 0.89.0 to 0.90.0 by @dependabot in #158
- Bump golang from 1.16.6 to 1.16.7 by @dependabot in #159
- Bump go.uber.org/zap from 1.18.1 to 1.19.0 by @dependabot in #160
- Bump github.com/go-openapi/runtime from 0.19.29 to 0.19.30 by @dependabot in #161
- Bump cloud.google.com/go from 0.90.0 to 0.91.1 by @dependabot in #162
- add SCT as HTTP response header by @bobcallaway in #163
- Bump cloud.google.com/go from 0.91.1 to 0.92.3 by @dependabot in #167
- Bump golang from 1.16.7 to 1.17.0 by @dependabot in #166
- Bump github.com/go-openapi/strfmt from 0.20.1 to 0.20.2 by @dependabot in #168
- Bump github.com/go-openapi/errors from 0.20.0 to 0.20.1 by @dependabot in #169
- Bump github.com/go-openapi/runtime from 0.19.30 to 0.19.31 by @dependabot in #171
- Switch to the JSON logger in prod by @dlorenc in #175
- Generate client code with swagger in Makefile by @priyawadhwa in #176
- Fix misspellings. by @msuozzo in #177
- Bump go.uber.org/zap from 1.19.0 to 1.19.1 by @dependabot in #178
- Bump golang from 1.17.0 to 1.17.1 by @dependabot in #179
- Add support for Github OIDC by @mattmoor in #180
- Bump github.com/ThalesIgnite/crypto11 from 1.2.4 to 1.2.5 by @dependabot in #182
- Add Github to
fulcioca
path. by @mattmoor in #184 - Changes fulcio-server to fulcio by @jyotsna-penumaka in #186
- Bump github.com/mitchellh/mapstructure from 1.4.1 to 1.4.2 by @dependabot in #185
- Add GitHub OIDC to Fulcio by @dlorenc in #181
- Bump github.com/coreos/go-oidc/v3 from 3.0.0 to 3.1.0 by @dependabot in #188
- Bump github.com/spf13/viper from 1.8.1 to 1.9.0 by @dependabot in #189
- add pkcs11-config-path command line parameter by @avoidik in #192
- Bump golang from 1.17.1 to 1.17.2 by @dependabot in #197
- Bump github.com/go-openapi/strfmt from 0.20.2 to 0.20.3 by @dependabot in #199
- Bump github.com/go-openapi/loads from 0.20.2 to 0.20.3 by @dependabot in #200
- Implement basic AWS CloudHSM support for root CA creation + rewrite "FulcioCA" to "PKCS11CA" by @mbestavros in #187
- update go.sum by @bobcallaway in #205
- Fix the Github OIDC challenge endpoint by @mattmoor in #206
- Bump github.com/go-openapi/validate from 0.20.2 to 0.20.3 by @dependabot in #198
- Bump github.com/go-openapi/spec from 0.20.3 to 0.20.4 by @dependabot in #201
- Bump github.com/go-openapi/runtime from 0.19.31 to 0.20.0 by @dependabot in #202
- Bump actions/checkout from 2.3.4 to 2.3.5 by @dependabot in #207
- use request ID logger where possible by @bobcallaway in #209
- Extract the OIDC issuer URL. by @mattmoor in #211
- Reproducible builds with trimpath by @naveensrinivasan in #210
- bump go-swagger to v0.28.0 by @bobcallaway in #213
- Add issuer information to code signing certificates by @bobcallaway in #204
- Refactor the kind e2e test. by @mattmoor in #215
- use sigstore/sigstore instead of directly calling RSA/ECDSA verify calls by @bobcallaway in #221
- Fulcio e2e testing / K8s OIDC /
ephemeralca
by @mattmoor in #219 - Refactor the way we access
Config
by @mattmoor in #222 - Remove the cluster-local block by default. by @mattmoor in #224
- Add support for "meta issuers". by @mattmoor in #223
- Use MetaIssuers to simulate EKS / GKE in e2e test. by @mattmoor in #225
- Various nits trying SoftHSM by @mattmoor in #217
- Bump github.com/hashicorp/golang-lru from 0.5.3 to 0.5.4 by @dependabot in #227
- Bump github.com/go-openapi/strfmt from 0.20.3 to 0.21.0 by @dependabot in #226
- Add support for recoginizing allow.pub as an spiffe issuer by @evanphx in #228
- Bump github.com/go-openapi/runtime from 0.20.0 to 0.21.0 by @dependabot in #229
- break out CA-specific implementation from common API class by @bobcallaway in #220
- Bump actions/checkout from 2.3.5 to 2.4.0 by @dependabot in #233
- Bump golang from 1.17.2 to 1.17.3 by @dependabot in #234
- Fix nil pointer, update dev docs by @vaikas in #236
- fix cutpaste error, sets cpu correctly by @vaikas in #237
- Add commit sha and trigger to github workflow by @asraa in #232
- Bump github.com/sigstore/sigstore from 1.0.0 to 1.0.1 by @dependabot in #239
- Use
CGO_ENABLED=1
via.ko.yaml
. by @mattmoor in #242 - Fix street-address and postal-code descriptions to be more descriptive. by @vaikas in #245
- Bump github.com/go-openapi/strfmt from 0.21.0 to 0.21.1 by @dependabot in #247
- fix: go install complain missing version when dir not in module by @tuananh in #248
- Bump cloud.google.com/go/security from 0.1.0 to 1.1.0 by @dependabot in #246
- plumb through !cgo golang tags that removes pkcs11 support by @vaikas in #244
- Upgrade fulcios to use of the google privateca api at v1 by @n3wscott in #218
- Thread
FulcioConfig
through from main viactx
by @mattmoor in #249 - [Correction] Upgrade fulcios to use of the google privateca api at v1 by @n3wscott in #252
- Fix the k8s subject parsing. by @dlorenc in #254
- Consolidate
viper
usage inpkg/ca/ca.go
by @mattmoor in #255 - Bump github.com/mitchellh/mapstructure from 1.4.2 to 1.4.3 by @dependabot in #256
- Remove
viper
frompkg/
. by @mattmoor in #257 - Drop gratuitous
sync.Once
in google CAs. by @mattmoor in #258 - Drop useless package. by @mattmoor in #259
- The v1 GCP CA requires this field to be set. by @dlorenc in #260
- Move the deployment to the new v1 cert. by @dlorenc in #261
- Consolidate the source-of-truth. by @mattmoor in #263
- add the ability to set the user-agent string on requests from the
Client
by @dekkagaijin in #264 - Bump golang from 1.17.3 to 1.17.4 by @dependabot in #265
- Drop OpenAPI from Fulcio by @mattmoor in #262
- While working on #267 noticed this, but didn't want to bake into it. by @vaikas in #268
- Wrap the server with the Prometheus so we get metrics + add an e2e te… by @vaikas in #267
- Bump github.com/prometheus/common from 0.29.0 to 0.32.1 by @dependabot in #270
- Bump golang from 1.17.4 to 1.17.5 by @dependabot in #269
- Make client request timeout configurable with
WithTimeout
client option by @nsmith5 in #272 - Localize flags to ...
Fulcio Release v0.1.1
#142 update go module dekkagaijin
#146 Validate its a recognised CA lukehinds
#145 fulcio-server: add html page when humans reach the server via the browser cpanato
#147 change or to and for known CA types runyontr
#149 add pkg/client for (non-generated) client-related utilities dekkagaijin
#151 Amend HSM cert usage lukehinds
Releases signed against fulcio root with OpenID Account: [email protected]
Fulcio Rekor entry: https://rekor.sigstore.dev/api/v1/log/entries/2fcb518e8b5b9a2db6a2a332475153a27291b3c9b188b9f2bd9c1b8652358223
Thanks to all contributors!
Release Fulcio v0.1.0
- Implement modular CA and SoftHSM integration #115
- Clarify some acronyms, add links #121
- fulcio/e2e: add initial kind cluster deployment to test fulcio server #118
- Support SPIFFE challenges instead of just emails #107
- Move OIDC configuration to a nested JSON config file #105
- Remove the viper config code #103
- Remove the common name field from the certs #102
Releases signed against fulcio root with OpenID Account: [email protected]
Fulcio Rekor entry: https://rekor.sigstore.dev/api/v1/log/entries/e5e7197c84863605b43f67bd4df554b2af6089a28ba881a65dd7e9f0c978c5d7
Thanks to all contributors!