tuftool-v0.13.0

Fixes

• Apply fixes for GHSA-5vmp-m5v2-hx47, GHSA-v4wr-j3w6-mxqc, GHSA-j8x2-777p-23fc GHSA-76g3-38jv-wxh4, GHSA-q6r9-r9pw-4cf7
• Detect duplicate keyids when verifying roles (094f0877)
• Use the update start time when checking for signature expiry, rather than the current time (0eeb60ae)
• Always store root.json in the datastore (thanks @AdamKorcz, @jku!) (7573eb97)

Changes

• Dependency updates

tough-v0.20.0

Fixes

• Apply fixes for GHSA-5vmp-m5v2-hx47, GHSA-v4wr-j3w6-mxqc, GHSA-j8x2-777p-23fc, GHSA-76g3-38jv-wxh4, GHSA-q6r9-r9pw-4cf7
• Detect duplicate keyids when verifying roles (094f0877)
• Use the update start time when checking for signature expiry, rather than the current time (0eeb60ae)
• Always store root.json in the datastore (thanks @AdamKorcz, @jku!) (7573eb97)

Changes

• Add a permissive argument to find_target(), allowing the caller to cease a search when a terminating delegation is encountered (c5ee1718)
• Add terminating argument to RepositoryEditor::delegate_role() and RepositoryEditor::add_role() to enable adding terminating delegations (598111f8)
• Dependency updates

tough-ssm-v0.15.0

Changes

• Update tough to 0.20.0
• Dependency updates

tough-kms-v0.12.0

Changes

• Update tough to 0.20.0
• Dependency updates

tuftool-v0.12.0

Changes

• Add FIPS support #828
• Dependency updates #825, #826

tough-v0.19.0

Changes

• Add FIPS support #828
• Dependency updates #825

tough-ssm-v0.14.0

Changes

• Add FIPS support #828
• Dependency updates #826

tough-kms-v0.11.0

Changes

• Add FIPS support #828
• Dependency updates #825, #826

olpc-cjson-v0.1.4

Changes

• Fix 128bit integer serialization (thanks @aumetra) #820

tuftool-v0.11.1

Changes

• Dependency updates #822