Skip to content

Releases: secure-systems-lab/securesystemslib

v0.15.0

14 May 18:39
@SantiagoTorres SantiagoTorres
v0.15.0
This tag was signed with the committer’s verified signature. The key has expired.
SantiagoTorres Santiago Torres
GPG key ID: 468F122CE8162295
Expired
Learn about vigilant mode.
09cf6d4
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.15.0
  • Allow Blake (blake2s and blake2b) hashing algorithms (#218)
  • new features
    • Add nistp384 signature verification support (#228)
    • Allow callers to provide a default keyid in format_metadata_to_key, rather than using the default keyid value of a hash of the canonical JSON of the key metadata (#225)
    • Implement files and directories abstraction as an abstract base class; StorageBackendInterface, with a concrete implementation for local filesystems; FilesystemBackend (#232). This enables users, such as tuf, to support non-local/non-traditional filesystems, so long as they provide an object implementing securesystemslib.storage.StorageBackendInterface. All functions which take a StorageBackendInterface default to creating a filesystemBackend object for local filesystem interaction when an object isn't provided. This means that behaviour remains the same as in prior (0.14.x) releases of securesystemslib, only instead of throwing exceptions rom the Python standard library a custom, generic, error is thrown: securesystemslib.exceptions.StorageError
  • removed features
    • Remove support for gzipped files in load_json_file (#230)
Assets 6
Loading

Secure Systems Lib v0.14.2

26 Feb 14:41
@lukpueh lukpueh
v0.14.2
This tag was signed with the committer’s verified signature. The key has expired.
lukpueh Lukas Pühringer
GPG key ID: 89A2AD3C07D962E8
Expired
Learn about vigilant mode.
fe918f8
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Secure Systems Lib v0.14.2 Pre-release
Pre-release
  • Re-enable OpenPGP signature verification without GnuPG (#215)
Assets 6
Loading

Secure Systems Lib v0.14.1

25 Feb 17:29
@lukpueh lukpueh
v0.14.1
This tag was signed with the committer’s verified signature. The key has expired.
lukpueh Lukas Pühringer
GPG key ID: 89A2AD3C07D962E8
Expired
Learn about vigilant mode.
b6c160b
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Secure Systems Lib v0.14.1 Pre-release
Pre-release
  • Improve logging (#212, #211)
  • Fix dependency monitoring and revise requirements files (#209)
  • Further improve optional dependency handling (#206)
  • Update release metadata (#205)
Assets 6
Loading

Secure Systems Lib v0.14.0

30 Jan 16:44
@lukpueh lukpueh
v0.14.0
This tag was signed with the committer’s verified signature. The key has expired.
lukpueh Lukas Pühringer
GPG key ID: 89A2AD3C07D962E8
Expired
Learn about vigilant mode.
7c183ec
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Secure Systems Lib v0.14.0 Pre-release
Pre-release
  • behavior change
    • Default to pure Python ed25519 signature verification when nacl is unavailable (#200)
    • Fix settings.SUBPROCESS_TIMEOUT access in process module (#202)
  • Improve schema-related error message (#199)
  • Generally improve optional dependency handling (#200)
  • Enhance test configuration, fix typos and remove unused code (#201)
  • Fix improper identity check (#203)
Assets 6
Loading

Secure Systems Lib v0.13.1

18 Dec 09:05
@lukpueh lukpueh
v0.13.1
This tag was signed with the committer’s verified signature. The key has expired.
lukpueh Lukas Pühringer
GPG key ID: 89A2AD3C07D962E8
Expired
Learn about vigilant mode.
536c7f2
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Secure Systems Lib v0.13.1 Pre-release
Pre-release
  • Fix MANIFEST.in to include all test data in source release (#196)
Assets 6
Loading

Secure Systems Lib v0.13.0

17 Dec 10:15
@lukpueh lukpueh
v0.13.0
This tag was signed with the committer’s verified signature. The key has expired.
lukpueh Lukas Pühringer
GPG key ID: 89A2AD3C07D962E8
Expired
Learn about vigilant mode.
e2ad211
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Secure Systems Lib v0.13.0 Pre-release
Pre-release
  • Add support for OpenPGP EdDSA/ed25519 keys and signatures (#188)
Assets 6
Loading

Secure Systems Lib v0.12.2

11 Nov 19:00
@lukpueh lukpueh
v0.12.2
This tag was signed with the committer’s verified signature. The key has expired.
lukpueh Lukas Pühringer
GPG key ID: 89A2AD3C07D962E8
Expired
Learn about vigilant mode.
bcede29
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Secure Systems Lib v0.12.2 Pre-release
Pre-release
  • Remove unnecessary python-dateutil==2.8.0 version pinning to not cause downstream dependency conflicts (#192)
Assets 6
Loading

Secure Systems Lib v0.12.1

29 Oct 10:48
@lukpueh lukpueh
v0.12.1
This tag was signed with the committer’s verified signature. The key has expired.
lukpueh Lukas Pühringer
GPG key ID: 89A2AD3C07D962E8
Expired
Learn about vigilant mode.
dfd4c65
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Secure Systems Lib v0.12.1 Pre-release
Pre-release
  • Fix stream duplication race conditions in subprocess interface (#186)
Assets 5
Loading

Secure Systems Lib v0.12.0

14 Oct 08:31
@lukpueh lukpueh
v0.12.0
This tag was signed with the committer’s verified signature. The key has expired.
lukpueh Lukas Pühringer
GPG key ID: 89A2AD3C07D962E8
Expired
Learn about vigilant mode.
586c6b5
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Secure Systems Lib v0.12.0 Pre-release
Pre-release
  • backwards incompatible
    • Remove data serialization in create_signature and verify_signature (#162)
    • Replace mostly obsolete TempFile utility with single helper function (#181)
    • Remove TUF-specific code and comments (#165)
  • new features
    • Add support for pkcs1v15 RSA signature scheme and additional hash algorithms (#173, #175)
    • Add basic OpenPGP support, transferred from in-toto (#174, #176, #185)
  • miscellaneous
    • Fix publishing of code coverage and enhance test configuration (#171)
    • Make colorama a strict dependency (#178)
    • Enhance source distribution metadata (#168)
    • Update downstream Debian metadata (#177)
Assets 5
Loading

Secure Systems Lib v0.11.3

27 Sep 20:48
@awwad awwad
sslibv0.11.3
23008b4
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Secure Systems Lib v0.11.3 Pre-release
Pre-release

securesystemslib v0.11.3

  • Provide option to normalize line endings (\r\n -> \n, \r -> \n) when
    calculating the hash of a file (default: do not normalize).
  • Update developer dependencies (dev-requirements.txt):
    • cryptography 2.2.2 to 2.3.1
    • tox 3.0.0 to 3.2.1
Assets 6
Loading