What's Changed
- Moved dsse to fuzz dir by @naveensrinivasan in #214
- Bump github.com/Azure/azure-sdk-for-go from 60.3.0+incompatible to 61.0.0+incompatible by @dependabot in #215
- Fuzz - Fixed the panic that was caused by incorrect data by @naveensrinivasan in #213
- Bump github.com/aws/aws-sdk-go from 1.42.25 to 1.42.26 by @dependabot in #216
- Bump github.com/aws/aws-sdk-go from 1.42.26 to 1.42.27 by @dependabot in #217
- Bump github.com/aws/aws-sdk-go from 1.42.27 to 1.42.28 by @dependabot in #219
- Bump github.com/Azure/azure-sdk-for-go from 61.0.0+incompatible to 61.1.0+incompatible by @dependabot in #218
- Bump github.com/aws/aws-sdk-go from 1.42.28 to 1.42.29 by @dependabot in #220
- Bump github.com/aws/aws-sdk-go from 1.42.29 to 1.42.31 by @dependabot in #222
- pin actions by digest; update chrome install to use signed repo by @bobcallaway in #225
- Bump github.com/aws/aws-sdk-go from 1.42.31 to 1.42.32 by @dependabot in #224
- Bump github.com/aws/aws-sdk-go from 1.42.32 to 1.42.33 by @dependabot in #227
- Bump github/codeql-action from 300c8b6dcbaf905eb250b06113e2e62c340a2d20 to 1.0.27 by @dependabot in #226
- Fix: verify with HashiVault KMS by @blz-ea in #229
- Bump github.com/aws/aws-sdk-go from 1.42.33 to 1.42.34 by @dependabot in #230
- Bump github.com/Azure/azure-sdk-for-go from 61.1.0+incompatible to 61.2.0+incompatible by @dependabot in #231
- KMS: Change how the Azure authentication method is handled by @simongottschlag in #228
- Bump github.com/aws/aws-sdk-go from 1.42.34 to 1.42.35 by @dependabot in #232
- Bump github.com/Azure/go-autorest/autorest from 0.11.22 to 0.11.24 by @dependabot in #233
- Drop SHA1, SHA224 for RSA-PSS/PKCS#1, enforce for RSA-PKCS#1 by @haydentherapper in #234
- Bump github/codeql-action from 1.0.27 to 1.0.28 by @dependabot in #236
- Bump github.com/aws/aws-sdk-go from 1.42.35 to 1.42.36 by @dependabot in #235
- Bump github.com/google/go-cmp from 0.5.6 to 0.5.7 by @dependabot in #237
- Bump github.com/aws/aws-sdk-go from 1.42.36 to 1.42.37 by @dependabot in #238
- Bump github.com/Azure/azure-sdk-for-go from 61.2.0+incompatible to 61.3.0+incompatible by @dependabot in #239
- Fix minor typos for HashiCorp by @jbayer in #240
- Bump github.com/aws/aws-sdk-go from 1.42.37 to 1.42.38 by @dependabot in #242
- Bump github/codeql-action from 1.0.28 to 1.0.29 by @dependabot in #241
- Add subject key ID calculation from public key by @haydentherapper in #243
- Bump github.com/aws/aws-sdk-go from 1.42.38 to 1.42.39 by @dependabot in #245
- Bump github/codeql-action from 1.0.29 to 1.0.30 by @dependabot in #244
- Bump github.com/aws/aws-sdk-go from 1.42.39 to 1.42.40 by @dependabot in #248
- Wire up html page passed in for interactive OIDC callback server by @n3wscott in #247
- Bump github.com/aws/aws-sdk-go from 1.42.40 to 1.42.41 by @dependabot in #250
- Bump github.com/aws/aws-sdk-go from 1.42.41 to 1.42.42 by @dependabot in #251
- Bump github.com/aws/aws-sdk-go from 1.42.42 to 1.42.43 by @dependabot in #252
- Add oidc login to vault by @sudo-bmitch in #249
- Bump github/codeql-action from 1.0.30 to 1.0.31 by @dependabot in #253
- Bump github.com/aws/aws-sdk-go from 1.42.43 to 1.42.44 by @dependabot in #254
- Bump github.com/Azure/azure-sdk-for-go from 61.3.0+incompatible to 61.4.0+incompatible by @dependabot in #255
- Skip strict check on PKCE discovery claim on Azure by @bobcallaway in #246
- Add ability to specify key version for Hashivault by @bobcallaway in #256
- update deps by @dekkagaijin in #257
- Bump github.com/aws/aws-sdk-go from 1.42.45 to 1.42.46 by @dependabot in #258
- Bump cloud.google.com/go/kms from 1.1.0 to 1.2.0 by @dependabot in #259
- return version of Vault key via functional option by @bobcallaway in #260
- Bump github/codeql-action from 1.0.31 to 1.0.32 by @dependabot in #261
- Bump github.com/aws/aws-sdk-go from 1.42.46 to 1.42.47 by @dependabot in #262
- Bump github.com/aws/aws-sdk-go from 1.42.47 to 1.42.48 by @dependabot in #264
- Bump github.com/go-rod/rod from 0.101.8 to 0.102.0 by @dependabot in #265
- Bump github.com/aws/aws-sdk-go from 1.42.48 to 1.42.49 by @dependabot in #267
- Bump actions/setup-go from 2.1.5 to 2.2.0 by @dependabot in #266
- Bump github.com/aws/aws-sdk-go from 1.42.49 to 1.42.50 by @dependabot in #268
- Bump github.com/go-rod/rod from 0.102.0 to 0.102.1 by @dependabot in #271
- Bump github.com/aws/aws-sdk-go from 1.42.50 to 1.42.51 by @dependabot in #270
- Bump github/codeql-action from 1.0.32 to 1.1.0 by @dependabot in #269
- Bump github.com/aws/aws-sdk-go from 1.42.51 to 1.42.52 by @dependabot in #272
- Bump github.com/Azure/azure-sdk-for-go from 61.4.0+incompatible to 61.5.0+incompatible by @dependabot in #273
- Bump cloud.google.com/go/kms from 1.2.0 to 1.3.0 by @dependabot in #274
- Bump github.com/aws/aws-sdk-go from 1.42.52 to 1.42.53 by @dependabot in #275
- Bump github.com/aws/aws-sdk-go from 1.42.53 to 1.43.0 by @dependabot in #281
- Bump github/codeql-action from 1.1.0 to 1.1.2 by @dependabot in #280
- pkg/signature/kms doesn't depend on kms impls by @imjasonh in #276
- remove unmaintained test dependency with invalid license by @bobcallaway in #279
- move e2e tests inline with various implementation packages by @bobcallaway in #282
- feat(kms): add supported providers func by @Dentrax in #277
- Bump github.com/aws/aws-sdk-go from 1.43.0 to 1.43.1 by @dependabot in #283
- Bump github.com/Azure/azure-sdk-for-go from 61.5.0+incompatible to 61.6.0+incompatible by @dependabot in #284
- Bump github.com/aws/aws-sdk-go from 1.43.1 to 1.43.2 by @dependabot in #285
- Bump github.com/aws/aws-sdk-go from 1.43.2 to 1.43.3 by @dependabot in #286
- Bump github.com/aws/aws-sdk-go from 1.43.3 to 1.43.4 by @dependabot in #287
- Permit usage of signing keys with
aws-us-gov
arn partitions by @chaospuppy in #289 - Bump github/codeql-action from 1.1.2 to 1.1.3 by @dependabot in #291
- Bump github.com/aws/aws-sdk-go from 1.43.4 to 1.43.5 by @dependabot in #292
- update permissions for codeql by @bobcallaway in #293
- Bump github.com/aws/aws-sdk-go from 1.43.5 to 1.43.6 by @dependabot in #295
- Bump golangci/golangci-lint-action from 2.5.2 to 3 by @dependabot in #294
- Bump hashicorp vault to 1.4.0. by @dlorenc in #297
- Bump github.com/hashicorp/vault/api from 1.4.0 to 1.4.1 by @dependabot in #298
- Explicitly run the go setup action. by @dlorenc in #299
- Bump github.com/secure-systems-lab/go-securesystemslib from 0.3.0 to 0.3.1 by @dependabot in #304
- Bump golangci/golangci-lint-action from 3.0.0 to 3.1.0 by @dependabot in #300
- Bump actions/setup-go from 2.2.0 to 3 by @dependabot in #301
- Bump github.com/aws/aws-sdk-go from 1.43.6 to 1.43.7 by @dependabot in #302
- Bump github.com/Azure/azure-sdk-for-go from 61.6.0+incompatible to 62.0.0+incompatible by @dependabot in #303
- Bump github.com/aws/aws-sdk-go from 1.43.7 to 1.43.8 by @dependabot in #307
- Bump actions/checkout from 2.4.0 to 3 by @dependabot in #306
- Bump github.com/aws/aws-sdk-go from 1.43.8 to 1.43.9 by @dependabot in #309
- Bump actions/upload-artifact from 2.3.1 to 3 by @dependabot in #310
- Bump cloud.google.com/go/kms from 1.3.0 to 1.4.0 by @dependabot in #311
- Bump github.com/aws/aws-sdk-go from 1.43.9 to 1.43.10 by @dependabot in #312
- Bump github.com/go-rod/rod from 0.102.1 to 0.103.0 by @dependabot in #313
- Bump github.com/aws/aws-sdk-go from 1.43.10 to 1.43.11 by @dependabot in #314
- Bump github.com/aws/aws-sdk-go from 1.43.11 to 1.43.12 by @dependabot in #316
- Bump github.com/Azure/azure-sdk-for-go from 62.0.0+incompatible to 62.1.0+incompatible by @dependabot in #317
- Bump github.com/aws/aws-sdk-go from 1.43.12 to 1.43.13 by @dependabot in #319
- Bump github/codeql-action from 1.1.3 to 1.1.4 by @dependabot in #318
- Bump github.com/aws/aws-sdk-go from 1.43.13 to 1.43.14 by @dependabot in #321
- Enable the same golangci-lint rules as
cosign
by @dekkagaijin in #322 - Bump github.com/aws/aws-sdk-go from 1.43.14 to 1.43.15 by @dependabot in #323
- Initial introduction and implementation of
oidc.IDTokenSource
by @dekkagaijin in #320 - Update CODEOWNERS by @endorama in #315
- Bump github.com/aws/aws-sdk-go from 1.43.15 to 1.43.16 by @dependabot in #324
- Add a reusuable GitHub Action workflow for cutting releases. by @k4leung4 in #325
- return immediately, without waiting for the operation in progress to complete by @cpanato in #326
- Bump github.com/aws/aws-sdk-go from 1.43.16 to 1.43.17 by @dependabot in #327
- Bump github.com/Azure/azure-sdk-for-go from 62.1.0+incompatible to 62.2.0+incompatible by @dependabot in #328
- Bump github.com/aws/aws-sdk-go from 1.43.17 to 1.43.18 by @dependabot in #329
- Bump github.com/stretchr/testify from 1.7.0 to 1.7.1 by @dependabot in #332
- Included OpenSSF Best Practices badge by @naveensrinivasan in #333
- Bump github.com/aws/aws-sdk-go from 1.43.18 to 1.43.19 by @dependabot in #331
- fix lints found by golangci-lint by @cpanato in #334
- Bump github.com/aws/aws-sdk-go from 1.43.19 to 1.43.20 by @dependabot in #335
- Bump github.com/aws/aws-sdk-go from 1.43.20 to 1.43.21 by @dependabot in #336
- Bump github/codeql-action from 1.1.4 to 1.1.5 by @dependabot in #330
- Make tag,key_ring,key optional for release workflow. by @k4leung4 in #338
- Bump github.com/go-rod/rod from 0.103.0 to 0.104.1 by @dependabot in #341
- Bump github.com/Azure/azure-sdk-for-go from 62.2.0+incompatible to 62.3.0+incompatible by @dependabot in #342
- Bump github.com/aws/aws-sdk-go from 1.43.21 to 1.43.22 by @dependabot in #340
- Bump actions/cache from 2.1.7 to 3 by @dependabot in #339
- Bump google.golang.org/protobuf from 1.27.1 to 1.28.0 by @dependabot in #343
- Bump github.com/aws/aws-sdk-go from 1.43.22 to 1.43.24 by @dependabot in #345
- Add utilities to parse Oauth2 access token HTTP responses by @dekkagaijin in #337
- Add method to check for public key equality by @haydentherapper in #346
New Contributors
- @blz-ea made their first contribution in #229
- @simongottschlag made their first contribution in #228
- @haydentherapper made their first contribution in #234
- @jbayer made their first contribution in #240
- @n3wscott made their first contribution in #247
- @sudo-bmitch made their first contribution in #249
- @imjasonh made their first contribution in #276
- @Dentrax made their first contribution in #277
- @chaospuppy made their first contribution in #289
- @endorama made their first contribution in #315
- @k4leung4 made their first contribution in #325
Full Changelog: v1.1.0...v1.2.0