From 0a2d1a24f36b3583eb6e6f069de797258131dbfe Mon Sep 17 00:00:00 2001 From: cpanato Date: Wed, 13 Apr 2022 09:48:55 +0200 Subject: [PATCH] add changelog for v0.6.0 Signed-off-by: cpanato --- CHANGELOG.md | 124 +++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 124 insertions(+) diff --git a/CHANGELOG.md b/CHANGELOG.md index d2c592286..be44699f5 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,3 +1,127 @@ +# v0.6.0 + +Notice: The server side remote fetching of resources will be removed in the next release + +## Enhancements + +* Create EntryID for new artifacts and return EntryID to user (#623) +* Add search through inactive shards for GET by UUID (#750) +* Add in configmap to release for sharding config (#766) +* set p.Block after parsing; other cleanup (#759) +* Add index to hashed intoto envelope (#761) +* Add the SHA256 digest of the intoto payload into the rekor entry (#764) +* Add support for providing certificate chain for X509 signature types (#747) +* Specify public key for inactive shards in shard config (#746) +* Use active tree on server startup (#727) +* Require tlog_id when inactive shard config file is passed in (#739) +* Replace `trillian_log_server.log_id_ranges` flag with a config file (#742) +* Update loginfo API endpoint to return information about inactive shards (#738) +* Refactor rekor-cli loginfo (#734) +* Get log proofs by Tree ID (#733) +* Return virtual index when creating and getting a log entry (#725) +* Clearer logging for createAndInitTree (#724) +* Change TreeID to be of type `string` instead of `int64` (#712) +* Switch to using the swag library for pointer manipulation. (#719) +* Make the loginfo command a bit more future/backwards proof. (#718) +* Use logRangesFlag in API, route reads based on TreeID (#671) +* Set rekor-cli User-Agent header on requests (#684) +* create namespace for rekor config in yaml. (#680) +* add securityContext to deployment. (#678) +* Move k8s objects out of the default namespace (#674) + +## Bug Fixes + +* Fix search without sha prefix (#767) +* Fix link in types README (#765) +* fix typo in filename (#758) +* fix build date format for version command (#745) +* fix merge conflict (#720) + +## Documentation + +* Add documentation about Alpine type (#697) +* update security process link (#685) +* Add intoto type documentation (#679) +* Add docs about API stabilitly and deprecation policy (#661) + +## Others + +* Bump github.com/go-openapi/spec from 0.20.4 to 0.20.5 (#768) +* Bump anchore/sbom-action from 0.9.0 to 0.10.0 (#763) +* Bump github/codeql-action from 2.1.7 to 2.1.8 (#762) +* Update release jobs and trillian images (#756) +* Bump sigstore/cosign-installer from 2.1.0 to 2.2.0 (#757) +* Bump anchore/sbom-action from 0.8.0 to 0.9.0 (#754) +* Bump codecov/codecov-action from 2.1.0 to 3 (#753) +* Bump github/codeql-action from 2.1.6 to 2.1.7 (#752) +* Bump google-github-actions/auth from 0.6.0 to 0.7.0 (#751) +* Bump github/codeql-action from 1.1.5 to 2.1.6 (#748) +* Bump anchore/sbom-action from 0.7.0 to 0.8.0 (#743) +* Bump google.golang.org/protobuf from 1.27.1 to 1.28.0 (#744) +* Bump github.com/go-openapi/runtime from 0.23.2 to 0.23.3 (#740) +* Bump github/codeql-action from 1.1.4 to 1.1.5 (#736) +* Use reusuable release workflow in sigstore/sigstore (#729) +* Fix copy/paste mistake in repo name. (#730) +* Bump github.com/spf13/cobra from 1.3.0 to 1.4.0 (#728) +* Bump golang from `ca70980` to `c7c9458` (#722) +* Bump google.golang.org/grpc from 1.44.0 to 1.45.0 (#723) +* Add sharding e2e test to Github Actions (#714) +* Bump github.com/go-playground/validator/v10 from 10.10.0 to 10.10.1 (#717) +* Bump github/codeql-action from 1.1.3 to 1.1.4 (#716) +* Add trillian container to existing release. (#715) +* Bump golang from `0168c35` to `ca70980` (#707) +* Mirror signed release images from GCR to GHCR as part of release (#701) +* Bump anchore/sbom-action from 0.6.0 to 0.7.0 (#709) +* Bump github.com/go-openapi/runtime from 0.23.1 to 0.23.2 (#710) +* Bump sigstore/cosign-installer from 2.0.1 to 2.1.0 (#708) +* Generate release yaml artifact. (#702) +* Bump actions/upload-artifact from 2.3.1 to 3 (#704) +* Go update to 1.17.8 and cosign to 1.6.0 (#705) +* Consistent parenthesis use in Makefile (#700) +* add code coverage to pull request. (#676) +* Bump actions/checkout from 2.4.0 to 3 (#698) +* Bump goreleaser/goreleaser-action from 2.9.0 to 2.9.1 (#696) +* Bump actions/setup-go from 2.2.0 to 3.0.0 (#694) +* Bump github.com/secure-systems-lab/go-securesystemslib (#695) +* Bump golangci/golangci-lint-action from 3.0.0 to 3.1.0 (#693) +* Bump goreleaser/goreleaser-action from 2.8.1 to 2.9.0 (#692) +* Bump golangci/golangci-lint-action from 2.5.2 to 3 (#691) +* Bump github/codeql-action from 1.1.2 to 1.1.3 (#690) +* Bump github.com/go-openapi/runtime from 0.23.0 to 0.23.1 (#689) +* explicitly set permissions for github actions (#687) +* Bump sigstore/cosign-installer from 2.0.0 to 2.0.1 (#686) +* Bump ossf/scorecard-action from 1.0.3 to 1.0.4 (#683) +* Bump github/codeql-action from 1.1.0 to 1.1.2 (#682) +* Bump actions/github-script from 5.1.0 to 6 (#669) +* Bump github/codeql-action from 1.0.32 to 1.1.0 (#668) +* update cross-build and dockerfile to use go 1.17.7 (#666) +* Bump gopkg.in/ini.v1 from 1.66.3 to 1.66.4 (#664) +* Bump actions/setup-go from 2.1.5 to 2.2.0 (#663) +* Bump golang from `301609e` to `fff998d` (#662) +* use upstream k8s version lib (#657) +* Bump github/codeql-action from 1.0.31 to 1.0.32 (#659) +* Bump go.uber.org/zap from 1.20.0 to 1.21.0 (#660) +* Bump github.com/go-openapi/strfmt from 0.21.1 to 0.21.2 (#656) +* Bump github.com/go-openapi/runtime from 0.22.0 to 0.23.0 (#655) +* Update the warning text for the GA release. (#654) +* attempting to fix codeowners file (#653) +* update release job (#651) +* Bump google-github-actions/auth from 0.5.0 to 0.6.0 (#652) + +## Contributors + +* Asra Ali (@asraa) +* Bob Callaway (@bobcallaway) +* Carlos Tadeu Panato Junior (@cpanato) +* Dan Lorenc (@dlorenc) +* Eddie Zaneski (@eddiezane) +* Hayden Blauzvern (@haydentherapper) +* John Speed Meyers +* Kenny Leung (@k4leung4) +* Lily Sturmann (@lkatalin) +* Priya Wadhwa (@priyawadhwa) +* Scott Nichols (@n3wscott) + # v0.5.0 ## Highlights