v0.9.6

0.9.6 - 2023-10-25

Fixes

• PrintableStringConstraintValidator should flag invalid characters in tagged PrintableStrings (#48)

New features/enhancements

• Bump Docker image to Python 3.12 (#50)

v0.9.5

0.9.5 - 2023-09-29

Fixes

• Stopping Docker container when executing external command results in immediate shutdown of container (#45)

v0.9.4

0.9.4 - 2023-09-28

New features/enhancements

• Publish Docker images (#43)

v0.9.3

0.9.3 - 2023-09-20

New features/enhancements

• Explicitly support Python 3.12 (#34)
• Add REST endpoint that returns the set of possible findings for a specific linter (#36)
• Surround document-sourced string values with double quotes in finding messages (#41)

Fixes

• Suppress ValueError stack trace when lint_cabf_smime_cert can't determine certificate type (#37)
• OrganizationIdentifierCountryNameConsistentValidator should perform a case-insensitive country comparison (#38)
• Change severity of cabf.smime.email_address_in_attribute_not_in_san from WARNING to ERROR (#39)
• Decoding error when determining certificate type returns HTTP 500 (#40)

v0.9.2

What's Changed

Fixes/improvements:

• More gracefully handle malformed URIs in the CABF internal domain name validators #30
• Remove use of Cryptography library for certificate parsing/type determination #31
• Only log exceptions when an unhandled exception occurs #32

v0.9.1

What's Changed

New features:

• REST API: #23. See README for installation and usage instructions.
• SCT count validator: #26
• S/MIME validator to check consistency of country names in orgId and countryName attributes: #27

Bug fixes:

• Fix bug where duplicated findings are output in the JSON report if a validator reports multiple findings: #22
• Don't report "cabf.serverauth.ca_first_policy_oid_not_reserved" for non-TLS CAs: #28

v0.9.0

What's Changed

• PR: v0.9.0 implementation by @CBonnell in #19

• Issue: Add support for linting certificates against the SC-62 profiles in #18

• Issue: Add support for specifying absent value targets for the ASN.1 decoder maps in #20

• Issue: Relax format for ISO 3166-2 state/province identifiers in #17

• Issue: S/MIME linter raises ERROR-level cabf.critical_crldp_extension while SMBR text is SHOULD-level in #8

Full Changelog: v0.8.6...v0.9.0

v0.8.6

What's Changed

• Fix DirString comparison in SMBR CN Validator (#13) by @CBonnell in #14

Full Changelog: v0.8.5...v0.8.6

v0.8.5

What's Changed

• Disallow Registration References in GOV and INT orgIDs by @CBonnell in #12

Full Changelog: v0.8.4...v0.8.5

v0.8.4

What's Changed

• Fix CN and O value heuristic comparison by @CBonnell in #10

Full Changelog: v0.8.3...v0.8.4