v0.6.5

What's Changed

• Bump urllib3 from 2.6.0 to 2.6.3 by @dependabot[bot] in #156
• Bump github.com/aws/aws-sdk-go-v2/config from 1.32.6 to 1.32.7 by @dependabot[bot] in #157
• Bump github.com/aws/aws-sdk-go-v2/service/dynamodb from 1.53.5 to 1.54.0 by @dependabot[bot] in #161
• Bump github.com/aws/aws-sdk-go-v2/service/kms from 1.49.4 to 1.49.5 by @dependabot[bot] in #160

Full Changelog: v0.6.4...v0.6.5

v0.6.4

What's Changed

• Update Go dependencies to handle vulnerabilities by @kgaughan in #155
• Bump urllib3 from 2.5.0 to 2.6.0 by @dependabot[bot] in #148
• Bump pymdown-extensions from 10.16 to 10.16.1 by @dependabot[bot] in #154

Full Changelog: v0.6.3...v0.6.4

v0.6.3

What's Changed

• Pipeline maintenance by @kgaughan in #138
• Exclude mocks and test utils from test coverage by @kgaughan in #140
• Bump github.com/aws/aws-sdk-go-v2/service/dynamodb from 1.52.3 to 1.52.4 by @dependabot[bot] in #139
• Bump github.com/aws/aws-sdk-go-v2 from 1.39.6 to 1.40.0 by @dependabot[bot] in #144
• Bump github.com/aws/aws-sdk-go-v2/service/kms from 1.48.0 to 1.49.1 by @dependabot[bot] in #146
• Bump github.com/aws/aws-sdk-go-v2/config from 1.31.17 to 1.32.2 by @dependabot[bot] in #145
• Bump github.com/aws/aws-sdk-go-v2/service/dynamodb from 1.52.4 to 1.53.2 by @dependabot[bot] in #147

Full Changelog: v0.6.2...v0.6.3

v0.6.2

This release is primarily to pick up dependency updates.

Note that this release also switches to using ko for image builds. The main effect of this is that the executable path has changed. However, this will only affect you if you're using the gcredstash container as a base for another image. Further, the distroless base image tag has been switched from latest to noroot to help improve security. This should also have no effect on you unless you're building another container form this one. The new image now comes with an SPDX SBOM, but the image is not yet signed.

What's Changed

• Bump github.com/aws/aws-sdk-go-v2/service/dynamodb from 1.50.5 to 1.52.3 by @dependabot[bot] in #133
• Bump github.com/aws/aws-sdk-go-v2 from 1.39.2 to 1.39.5 by @dependabot[bot] in #134
• Bump github.com/aws/aws-sdk-go-v2/config from 1.31.11 to 1.31.16 by @dependabot[bot] in #135
• Bump github.com/aws/aws-sdk-go-v2/service/kms from 1.45.6 to 1.47.0 by @dependabot[bot] in #136
• Switch to ko for image builds by @kgaughan in #137

Full Changelog: v0.6.1...v0.6.2

v0.6.1

I now consider gcredstash to be in maintenance mode. I'll continue to pick up security and dependency updates, but it should be considered feature complete. There are better ways of doing what it does these days, such as AWS secrets manager, OpenBao, &c.

What's Changed

• s/formula/cask/: missed in the previous change by @kgaughan in #115
• Point to the credstash issue for the static IV by @kgaughan in #116
• Bump github.com/spf13/cobra from 1.9.1 to 1.10.1 by @dependabot[bot] in #117
• Update aws-sdk-go-v2 to v1.38.3, along with its submodules by @kgaughan in #122

Full Changelog: v0.6.0...v0.6.1

v0.6.0

What's Changed

• Update documentation toolchain by @kgaughan in #108
• Bump go.uber.org/mock from 0.5.2 to 0.6.0 by @dependabot[bot] in #110
• Bump github.com/aws/aws-sdk-go from 1.55.7 to 1.55.8 by @dependabot[bot] in #109
• Port to aws-sdk-go-v2 by @kgaughan in #111
• Lean on Cobra for the stdout io.Writer by @kgaughan in #112
• Switch to golangci-lint v2 by @kgaughan in #113
• Fix goreleaser deprecations by @kgaughan in #114

Full Changelog: v0.5.6...v0.6.0

v0.5.6

Ever since the conversion to Cobra, the output behaviour has been broken. This fixes it so that it always prints to stdout when it should.

What's Changed

• Update documentation toolchain by @kgaughan in #104
• Cobra's cmd.Print* can be stderr by @kgaughan in #107

Full Changelog: v0.5.5...v0.5.6

v0.5.5

Other than picking updates, this builds the binary against Go 1.24, which means it should support FIPS-compliant and non-FIPS environments.

What's Changed

• Bump go.uber.org/mock from 0.5.0 to 0.5.1 by @dependabot in #100
• Bump github.com/aws/aws-sdk-go from 1.55.6 to 1.55.7 by @dependabot in #101
• Update mocks by @kgaughan in #103

Full Changelog: v0.5.4...v0.5.5

v0.5.4

A maintenance release to pick up dependency updates. It also downsizes the container image by moving it to use a distroless base image where it previously used an Alpine Linux image.

What's Changed

• Update docker/login-action; remove unnecessary docker/metadata-action by @kgaughan in #83
• Fix misspelling by @kgaughan in #84
• Switch to stefanzweifel/git-auto-commit-action by @kgaughan in #85
• Bump github.com/aws/aws-sdk-go from 1.55.3 to 1.55.5 by @dependabot in #86
• Switch to distroless by @kgaughan in #87
• Fix license in image metadata by @kgaughan in #88
• s/cannot/can't/g for consistency by @kgaughan in #89
• Docs pipeline by @kgaughan in #92
• Bump go.uber.org/mock from 0.4.0 to 0.5.0 by @dependabot in #93
• Bump jinja2 from 3.1.4 to 3.1.5 by @dependabot in #94
• Bump github.com/aws/aws-sdk-go from 1.55.5 to 1.55.6 by @dependabot in #95
• Bump github.com/spf13/cobra from 1.8.1 to 1.9.1 by @dependabot in #96
• Update requirements.txt to fix a jinja2 vulnerability by @kgaughan in #98
• Update toolchain by @kgaughan in #99

Full Changelog: v0.5.3...v0.5.4

v0.5.3

What's Changed

• Bump github.com/spf13/cobra from 1.8.0 to 1.8.1 by @dependabot in #72
• Bump github.com/aws/aws-sdk-go from 1.53.14 to 1.54.11 by @dependabot in #74
• Bump aws/aws-sdk-go to v1.54.19 and bump the linter too by @kgaughan in #76
• Automatically regenerate mocks when dependabot opens a PR by @kgaughan in #77
• Bump github.com/aws/aws-sdk-go from 1.54.19 to 1.55.3 by @dependabot in #80
• Lean on goreleaser for docker builds by @kgaughan in #81
• Add latest tag to future images by @kgaughan in #82

Full Changelog: v0.5.2...v0.5.3