diff --git a/Cargo.lock b/Cargo.lock index 45c6a5d..0fb5228 100644 --- a/Cargo.lock +++ b/Cargo.lock @@ -1560,7 +1560,7 @@ dependencies = [ [[package]] name = "sigstore-bundle" -version = "0.2.0" +version = "0.3.0" dependencies = [ "base64", "hex", @@ -1576,7 +1576,7 @@ dependencies = [ [[package]] name = "sigstore-cache" -version = "0.2.0" +version = "0.3.0" dependencies = [ "chrono", "directories", @@ -1588,7 +1588,7 @@ dependencies = [ [[package]] name = "sigstore-conformance" -version = "0.2.0" +version = "0.3.0" dependencies = [ "base64", "hex", @@ -1609,7 +1609,7 @@ dependencies = [ [[package]] name = "sigstore-crypto" -version = "0.2.0" +version = "0.3.0" dependencies = [ "aws-lc-rs", "base64", @@ -1630,7 +1630,7 @@ dependencies = [ [[package]] name = "sigstore-fulcio" -version = "0.2.0" +version = "0.3.0" dependencies = [ "base64", "hex", @@ -1648,7 +1648,7 @@ dependencies = [ [[package]] name = "sigstore-merkle" -version = "0.2.0" +version = "0.3.0" dependencies = [ "base64", "hex", @@ -1662,7 +1662,7 @@ dependencies = [ [[package]] name = "sigstore-oidc" -version = "0.2.0" +version = "0.3.0" dependencies = [ "base64", "rand", @@ -1678,7 +1678,7 @@ dependencies = [ [[package]] name = "sigstore-rekor" -version = "0.2.0" +version = "0.3.0" dependencies = [ "base64", "hex", @@ -1696,7 +1696,7 @@ dependencies = [ [[package]] name = "sigstore-sign" -version = "0.2.0" +version = "0.3.0" dependencies = [ "base64", "chrono", @@ -1717,7 +1717,7 @@ dependencies = [ [[package]] name = "sigstore-trust-root" -version = "0.2.0" +version = "0.3.0" dependencies = [ "base64", "chrono", @@ -1739,7 +1739,7 @@ dependencies = [ [[package]] name = "sigstore-tsa" -version = "0.2.0" +version = "0.3.0" dependencies = [ "aws-lc-rs", "base64", @@ -1765,7 +1765,7 @@ dependencies = [ [[package]] name = "sigstore-types" -version = "0.2.0" +version = "0.3.0" dependencies = [ "base64", "chrono", @@ -1778,7 +1778,7 @@ dependencies = [ [[package]] name = "sigstore-verify" -version = "0.2.0" +version = "0.3.0" dependencies = [ "base64", "chrono", diff --git a/Cargo.toml b/Cargo.toml index 85266f9..2e530b4 100644 --- a/Cargo.toml +++ b/Cargo.toml @@ -17,7 +17,7 @@ members = [ ] [workspace.package] -version = "0.2.0" +version = "0.3.0" edition = "2021" license = "BSD-3-Clause" repository = "https://github.com/sigstore/sigultimate" @@ -86,15 +86,15 @@ futures = "0.3" directories = "6.0" # Internal crates (path + version for publishing) -sigstore-types = { path = "crates/sigstore-types", version = "0.2.0" } -sigstore-crypto = { path = "crates/sigstore-crypto", version = "0.2.0" } -sigstore-merkle = { path = "crates/sigstore-merkle", version = "0.2.0" } -sigstore-tsa = { path = "crates/sigstore-tsa", version = "0.2.0" } -sigstore-trust-root = { path = "crates/sigstore-trust-root", version = "0.2.0" } -sigstore-bundle = { path = "crates/sigstore-bundle", version = "0.2.0" } -sigstore-rekor = { path = "crates/sigstore-rekor", version = "0.2.0" } -sigstore-fulcio = { path = "crates/sigstore-fulcio", version = "0.2.0" } -sigstore-oidc = { path = "crates/sigstore-oidc", version = "0.2.0" } -sigstore-cache = { path = "crates/sigstore-cache", version = "0.2.0" } -sigstore-verify = { path = "crates/sigstore-verify", version = "0.2.0" } -sigstore-sign = { path = "crates/sigstore-sign", version = "0.2.0" } +sigstore-types = { path = "crates/sigstore-types", version = "0.3.0" } +sigstore-crypto = { path = "crates/sigstore-crypto", version = "0.3.0" } +sigstore-merkle = { path = "crates/sigstore-merkle", version = "0.3.0" } +sigstore-tsa = { path = "crates/sigstore-tsa", version = "0.3.0" } +sigstore-trust-root = { path = "crates/sigstore-trust-root", version = "0.3.0" } +sigstore-bundle = { path = "crates/sigstore-bundle", version = "0.3.0" } +sigstore-rekor = { path = "crates/sigstore-rekor", version = "0.3.0" } +sigstore-fulcio = { path = "crates/sigstore-fulcio", version = "0.3.0" } +sigstore-oidc = { path = "crates/sigstore-oidc", version = "0.3.0" } +sigstore-cache = { path = "crates/sigstore-cache", version = "0.3.0" } +sigstore-verify = { path = "crates/sigstore-verify", version = "0.3.0" } +sigstore-sign = { path = "crates/sigstore-sign", version = "0.3.0" } diff --git a/crates/sigstore-bundle/CHANGELOG.md b/crates/sigstore-bundle/CHANGELOG.md index d4befc9..89aebc9 100644 --- a/crates/sigstore-bundle/CHANGELOG.md +++ b/crates/sigstore-bundle/CHANGELOG.md @@ -7,6 +7,16 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ## [Unreleased] +## [0.3.0](https://github.com/wolfv/sigstore-rust/compare/sigstore-bundle-v0.2.0...sigstore-bundle-v0.3.0) - 2025-11-28 + +### Other + +- remove more types +- remove certifactePem +- unify certificate encoding +- simplifications by only supporting v03 bundle creation +- improve sign / verify flow, add conda specific test + ## [0.2.0](https://github.com/wolfv/sigstore-rust/compare/sigstore-bundle-v0.1.1...sigstore-bundle-v0.2.0) - 2025-11-27 ### Other diff --git a/crates/sigstore-cache/CHANGELOG.md b/crates/sigstore-cache/CHANGELOG.md new file mode 100644 index 0000000..00261e9 --- /dev/null +++ b/crates/sigstore-cache/CHANGELOG.md @@ -0,0 +1,19 @@ +# Changelog + +All notable changes to this project will be documented in this file. + +The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), +and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html). + +## [Unreleased] + +## [0.3.0](https://github.com/wolfv/sigstore-rust/compare/sigstore-cache-v0.2.0...sigstore-cache-v0.3.0) - 2025-11-28 + +### Fixed + +- fix clippy warnings + +### Other + +- add simple separation for cache domains +- add sigstore-cache diff --git a/crates/sigstore-crypto/CHANGELOG.md b/crates/sigstore-crypto/CHANGELOG.md index d1c3353..5a2954b 100644 --- a/crates/sigstore-crypto/CHANGELOG.md +++ b/crates/sigstore-crypto/CHANGELOG.md @@ -7,6 +7,17 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ## [Unreleased] +## [0.3.0](https://github.com/wolfv/sigstore-rust/compare/sigstore-crypto-v0.2.0...sigstore-crypto-v0.3.0) - 2025-11-28 + +### Other + +- make all interfaces more type safe +- remove more types +- encode more certificates properly +- unify certificate encoding +- improve sign / verify flow, add conda specific test +- more cleanup of functions + ## [0.2.0](https://github.com/wolfv/sigstore-rust/compare/sigstore-crypto-v0.1.1...sigstore-crypto-v0.2.0) - 2025-11-27 ### Other diff --git a/crates/sigstore-fulcio/CHANGELOG.md b/crates/sigstore-fulcio/CHANGELOG.md index 02e2f32..5d600f6 100644 --- a/crates/sigstore-fulcio/CHANGELOG.md +++ b/crates/sigstore-fulcio/CHANGELOG.md @@ -7,6 +7,18 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ## [Unreleased] +## [0.3.0](https://github.com/wolfv/sigstore-rust/compare/sigstore-fulcio-v0.2.0...sigstore-fulcio-v0.3.0) - 2025-11-28 + +### Fixed + +- fix clippy warnings + +### Other + +- add sigstore-cache +- remove more types +- encode more certificates properly + ## [0.2.0](https://github.com/wolfv/sigstore-rust/compare/sigstore-fulcio-v0.1.1...sigstore-fulcio-v0.2.0) - 2025-11-27 ### Other diff --git a/crates/sigstore-merkle/CHANGELOG.md b/crates/sigstore-merkle/CHANGELOG.md index 370fb45..403b622 100644 --- a/crates/sigstore-merkle/CHANGELOG.md +++ b/crates/sigstore-merkle/CHANGELOG.md @@ -7,6 +7,12 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ## [Unreleased] +## [0.3.0](https://github.com/wolfv/sigstore-rust/compare/sigstore-merkle-v0.2.0...sigstore-merkle-v0.3.0) - 2025-11-28 + +### Other + +- more cleanup of functions + ## [0.2.0](https://github.com/wolfv/sigstore-rust/compare/sigstore-merkle-v0.1.1...sigstore-merkle-v0.2.0) - 2025-11-27 ### Other diff --git a/crates/sigstore-rekor/CHANGELOG.md b/crates/sigstore-rekor/CHANGELOG.md index ca259e8..4e7c3cd 100644 --- a/crates/sigstore-rekor/CHANGELOG.md +++ b/crates/sigstore-rekor/CHANGELOG.md @@ -7,6 +7,16 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ## [Unreleased] +## [0.3.0](https://github.com/wolfv/sigstore-rust/compare/sigstore-rekor-v0.2.0...sigstore-rekor-v0.3.0) - 2025-11-28 + +### Other + +- add sigstore-cache +- make all interfaces more type safe +- remove more types +- remove certifactePem +- improve sign / verify flow, add conda specific test + ## [0.2.0](https://github.com/wolfv/sigstore-rust/compare/sigstore-rekor-v0.1.1...sigstore-rekor-v0.2.0) - 2025-11-27 ### Other diff --git a/crates/sigstore-sign/CHANGELOG.md b/crates/sigstore-sign/CHANGELOG.md index 2b46f63..da5955f 100644 --- a/crates/sigstore-sign/CHANGELOG.md +++ b/crates/sigstore-sign/CHANGELOG.md @@ -7,6 +7,18 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ## [Unreleased] +## [0.3.0](https://github.com/wolfv/sigstore-rust/compare/sigstore-sign-v0.2.0...sigstore-sign-v0.3.0) - 2025-11-28 + +### Other + +- remove more types +- encode more certificates properly +- remove certifactePem +- unify certificate encoding +- simplifications by only supporting v03 bundle creation +- improve sign / verify flow, add conda specific test +- more cleanup of functions + ## [0.2.0](https://github.com/wolfv/sigstore-rust/compare/sigstore-sign-v0.1.1...sigstore-sign-v0.2.0) - 2025-11-27 ### Other diff --git a/crates/sigstore-trust-root/CHANGELOG.md b/crates/sigstore-trust-root/CHANGELOG.md index 85e4082..5fc39c8 100644 --- a/crates/sigstore-trust-root/CHANGELOG.md +++ b/crates/sigstore-trust-root/CHANGELOG.md @@ -7,6 +7,15 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ## [Unreleased] +## [0.3.0](https://github.com/wolfv/sigstore-rust/compare/sigstore-trust-root-v0.2.0...sigstore-trust-root-v0.3.0) - 2025-11-28 + +### Other + +- add staging trust root +- make all interfaces more type safe +- improve sign / verify flow, add conda specific test +- more cleanup of functions + ## [0.2.0](https://github.com/wolfv/sigstore-rust/compare/sigstore-trust-root-v0.1.1...sigstore-trust-root-v0.2.0) - 2025-11-27 ### Other diff --git a/crates/sigstore-tsa/CHANGELOG.md b/crates/sigstore-tsa/CHANGELOG.md index 680409a..006f796 100644 --- a/crates/sigstore-tsa/CHANGELOG.md +++ b/crates/sigstore-tsa/CHANGELOG.md @@ -7,6 +7,15 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ## [Unreleased] +## [0.3.0](https://github.com/wolfv/sigstore-rust/compare/sigstore-tsa-v0.2.0...sigstore-tsa-v0.3.0) - 2025-11-28 + +### Other + +- remove more types +- remove certifactePem +- improve sign / verify flow, add conda specific test +- more cleanup of functions + ## [0.2.0](https://github.com/wolfv/sigstore-rust/compare/sigstore-tsa-v0.1.1...sigstore-tsa-v0.2.0) - 2025-11-27 ### Other diff --git a/crates/sigstore-types/CHANGELOG.md b/crates/sigstore-types/CHANGELOG.md index 2396082..48c6ba8 100644 --- a/crates/sigstore-types/CHANGELOG.md +++ b/crates/sigstore-types/CHANGELOG.md @@ -7,6 +7,15 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ## [Unreleased] +## [0.3.0](https://github.com/wolfv/sigstore-rust/compare/sigstore-types-v0.2.0...sigstore-types-v0.3.0) - 2025-11-28 + +### Other + +- make all interfaces more type safe +- unify certificate encoding +- improve sign / verify flow, add conda specific test +- more cleanup of functions + ## [0.2.0](https://github.com/wolfv/sigstore-rust/compare/sigstore-types-v0.1.1...sigstore-types-v0.2.0) - 2025-11-27 ### Other diff --git a/crates/sigstore-verify/CHANGELOG.md b/crates/sigstore-verify/CHANGELOG.md index 36dc59d..08b1e19 100644 --- a/crates/sigstore-verify/CHANGELOG.md +++ b/crates/sigstore-verify/CHANGELOG.md @@ -7,6 +7,16 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ## [Unreleased] +## [0.3.0](https://github.com/wolfv/sigstore-rust/compare/sigstore-verify-v0.2.0...sigstore-verify-v0.3.0) - 2025-11-28 + +### Other + +- make all interfaces more type safe +- remove more types +- improve sign / verify flow, add conda specific test +- more cleanup of functions +- remove manual verification code and use webpki + ## [0.2.0](https://github.com/wolfv/sigstore-rust/compare/sigstore-verify-v0.1.1...sigstore-verify-v0.2.0) - 2025-11-27 ### Other