Cosmian/kms 5.14.1
on GitHub

18 hours ago

[5.14.1] - 2025-12-26

🚀 Features

Add IDP multiple audiences configuration on [idp_auth] #656. Dehardcode kacls-migration audience for Google CSE migration and allow alternative audiences (e.g. for Google Decrypter use)

⚠️ WARNING

Server TOML configuration - kms.toml: The deprecated [auth] section has been fully removed in favor of [idp_auth]. Usage is:

...
[idp_auth]
jwt_auth_provider = [
  "https://accounts.google.com,https://www.googleapis.com/oauth2/v3/certs,my-audience,another_client_id",
  "https://auth0.example.com,,my-app",
  "https://keycloak.example.com/auth/realms/myrealm,,audience_1,audience_2"
]
...

📚 Documentation

Publish SBOM and vulnerability reports (#648)
Improve readme (#645)

🐛 Bug Fixes

Sign and verify for raw and digest data - rfc6979 (#654)
Allow explicitly AGPL-3.0-or-later license

⚙️ Miscellaneous Tasks

Make Github release sequential - fix cargo publish (#642)

Check out latest releases or
releases around Cosmian/kms 5.14.1

Don't miss a new kms release

NewReleases is sending notifications on new releases.

Get notifications