v1.2.0-rc.2

Vote PASSED [+4 -0]: #248

What's Changed

• fix: ocsp revocation check with context by @Two-Hearts in #235
• fix(test): test cases with example.com URL by @JeyJeyGao in #238
• build(deps): bump github.com/veraison/go-cose from 1.1.0 to 1.3.0 by @dependabot in #232
• fix: self-signed leaf certificate is not self-issued by @JeyJeyGao in #236
• build(deps): bump golang.org/x/crypto from 0.27.0 to 0.28.0 by @dependabot in #233
• build(deps): bump github.com/golang-jwt/jwt/v4 from 4.5.0 to 4.5.1 by @dependabot in #241
• fix: revocation response status code should be 200 by @JeyJeyGao in #239
• fix: timestamping by @Two-Hearts in #243
• build(deps): bump golang.org/x/crypto from 0.28.0 to 0.29.0 by @dependabot in #244
• build(deps): bump codecov/codecov-action from 4 to 5 by @dependabot in #245
• fix: add tsa cert chain revocation check after timestamping by @Two-Hearts in #246
• bump: bump up dependencies by @Two-Hearts in #249

Full Changelog: v1.2.0-rc.1...v1.2.0-rc.2

v1.2.0-rc.1

Vote PASSED [+4 -0]: #231

What's Changed

• feat: CRL by @JeyJeyGao in #214
• feat: CRL cache by @JeyJeyGao in #216
• build(deps): bump golang.org/x/crypto from 0.26.0 to 0.27.0 by @dependabot in #226
• test(signature): add two fuzz tests by @AdamKorcz in #229

New Contributors

• @AdamKorcz made their first contribution in #229

Full Changelog: v1.1.0...v1.2.0-rc.1

v1.1.0

Vote PASSED [+4 -0]: #225

What's Changed

• build(deps): bump golang.org/x/crypto from 0.25.0 to 0.26.0 by @dependabot in #219
• bump: bump up golang to v1.22 by @JeyJeyGao in #224

Full Changelog: v1.1.0-rc.1...v1.1.0

v1.1.0-rc.1

Vote PASSED [+5 -0]: #218

What's Changed

• build(deps): bump github.com/notaryproject/tspclient-go from 0.0.0-20240702050734-d91848411058 to 0.1.0 by @dependabot in #212
• refactor!: update revocation by @Two-Hearts in #215
• bump: bump up tspclient-go by @Two-Hearts in #217

Full Changelog: v1.1.0-beta.1...v1.1.0-rc.1

v1.1.0-beta.1

Vote PASSED [+4 -0]: #213

What's Changed

• build(deps): bump github.com/fxamacker/cbor/v2 from 2.6.0 to 2.7.0 by @dependabot in #208
• build(deps): bump golang.org/x/crypto from 0.23.0 to 0.24.0 by @dependabot in #206
• fix(ci): pass CODECOV_TOKEN to reusable-build.yml by @JeyJeyGao in #209
• feat: Timestamp by @Two-Hearts in #207
• build(deps): bump golang.org/x/crypto from 0.24.0 to 0.25.0 by @dependabot in #210
• fix: fix signerInfo.authenticSigningTime according to spec by @Two-Hearts in #211

Full Changelog: v1.0.3...v1.1.0-beta.1

v1.0.3

Vote PASSED [+4 -0]: #205

What's Changed

• build(deps): bump codecov/codecov-action from 3 to 4 by @dependabot in #188
• build(deps): bump github.com/fxamacker/cbor/v2 from 2.5.0 to 2.6.0 by @dependabot in #190
• build(deps): bump golang.org/x/crypto from 0.18.0 to 0.21.0 by @dependabot in #193
• chore: add GitHub action for stale issues and PRs by @yizha1 in #174
• bump: bump up golang version to v1.21 by @Two-Hearts in #194
• chore: org maintainers update by @toddysm in #196
• fix(ci): update codecov token by @JeyJeyGao in #199
• fix: leaf certificate validation by @Two-Hearts in #202
• build(deps): bump golang.org/x/crypto from 0.21.0 to 0.22.0 by @dependabot in #200
• build(deps): bump apache/skywalking-eyes from a790ab8dd23a7f861c18bd6aaa9b012e3a234bce to cd7b195c51fd3d6ad52afceb760719ddc6b3ee91 by @dependabot in #197
• build(deps): bump actions/stale from 8 to 9 by @dependabot in #195
• build(deps): bump golang.org/x/crypto from 0.22.0 to 0.23.0 by @dependabot in #204

Full Changelog: v1.0.2...v1.0.3

v1.0.2

Vote PASSED [+4 -0]: #187

What's Changed

• fix: fix license dependency check workflow by @Two-Hearts in #170
• build(deps): bump golang.org/x/crypto from 0.14.0 to 0.15.0 by @dependabot in #172
• doc: update README to align with the new project brand by @FeynmanZhou in #158
• chore: invalid signing time prompt improvement by @fanndu in #173
• build(deps): bump golang.org/x/crypto from 0.15.0 to 0.16.0 by @dependabot in #175
• build(deps): bump actions/setup-go from 4 to 5 by @dependabot in #177
• build(deps): bump golang.org/x/crypto from 0.16.0 to 0.17.0 by @dependabot in #180
• build(deps): bump github/codeql-action from 2 to 3 by @dependabot in #179
• Updated the maintainers and codeowners files by @toddysm in #183
• build(deps): bump golang.org/x/crypto from 0.17.0 to 0.18.0 by @dependabot in #184

New Contributors

• @FeynmanZhou made their first contribution in #158

Full Changelog: v1.0.1...v1.0.2

v1.0.1

Vote PASSED [+4 -0]: #168

What's Changed

• build: shift Go support window to [1.20, 1.21] by @Two-Hearts in #162
• build(deps): bump github.com/fxamacker/cbor/v2 from 2.4.0 to 2.5.0 by @dependabot in #160
• build(deps): bump actions/checkout from 3 to 4 by @dependabot in #163
• build(deps): bump golang.org/x/crypto from 0.11.0 to 0.14.0 by @dependabot in #167
• fix: update key usage error message to make it clear by @JeyJeyGao in #169

Full Changelog: v1.0.0...v1.0.1

v1.0.0

Vote PASSED [+5 -0]: #157

What's Changed

• chore: add issue template by @yizha1 in #133
• build(deps): bump golang.org/x/crypto from 0.9.0 to 0.10.0 by @dependabot in #151
• chore: add license header to files and github action workflow to check license by @Two-Hearts in #154
• build(deps): bump golang.org/x/crypto from 0.10.0 to 0.11.0 by @dependabot in #153
• fix: The notation spec link in annotation is unavailable by @fanndu in #156

New Contributors

• @fanndu made their first contribution in #156

Full Changelog: v1.0.0-rc.4...v1.0.0

v1.0.0-rc.4

What's Changed

• build(deps): bump golang.org/x/crypto from 0.7.0 to 0.8.0 by @dependabot in #143
• build(deps): bump golang.org/x/crypto from 0.8.0 to 0.9.0 by @dependabot in #144
• chore: update account info for Patrick Zheng by @yizha1 in #145
• chore: updated Notary v2 to Notary Project by @Two-Hearts in #146

New Contributors

• @Two-Hearts made their first contribution in #146

Full Changelog: v1.0.0-rc.3...v1.0.0-rc.4