v1.0.0-rc.4
·
254 commits
to main
since this release
v1.0.0-rc.4
yizha1
Yi Zha
This tag was signed with the committer’s verified signature.
yizha1
Yi Zha
🚀Notation CLI v1.0.0-rc.4 is now available!
Features
- Support validating certificate revocation with Online Certificate Status Protocol (OCSP)
- Introduce switch
NOTATION_EXPERIMENTAL=1to enable experimental features - Introduce new CLI command
notation policyto simplify trust policy configuration - Support OCI distribution referrers API
- Introduce signing, listing and verification with OCI image layout as experimental feature
- Experimental flag
--signature-manifestfornotation signcommand is now controlled by switchNOTATION_EXPERIMENTAL=1
Other Changes
- Support username and password prompt using
notation logincommand - Bug fixes
Detailed Commits
- doc: create CLI spec for managing trust policies (phase 1) by @yizha1 in #568
- build(deps): Bump golang.org/x/net from 0.1.0 to 0.7.0 in /test/e2e by @dependabot in #561
- build(deps): Bump oras.land/oras-go/v2 from 2.0.0 to 2.0.2 by @dependabot in #592
- build(deps): Bump actions/setup-go from 3 to 4 by @dependabot in #591
- feat: use Referrers API per OCI v1.1 spec by @patrickzheng200 in #602
- doc(spec): add subcommands to Notation plugin spec by @duffney in #555
- chore: remove Notary v2 reference in CLI repo by @patrickzheng200 in #603
- feat: add
showandimportfor trust policy management by @qweeah in #593 - feat: Support username and password prompt in login by @ningziwen in #566
- build(deps): Bump ossf/scorecard-action from 2.1.2 to 2.1.3 by @dependabot in #612
- feat: introduce experimental feature switch by @qweeah in #613
- fix: added warning for dangling referrers index deletion by @patrickzheng200 in #619
- doc: remove preview mark from policy commands by @qweeah in #629
- build(deps): Bump github.com/spf13/cobra from 1.6.1 to 1.7.0 by @dependabot in #626
- doc: update spec for feature sign/verify local images by @yizha1 in #601
- fix: fixing cert command by @patrickzheng200 in #627
- feat: add local sign/list/verification for OCI layout directory by @patrickzheng200 in #595
- doc: add an example to CLI help info for notation sign by @FeynmanZhou in #585
- build(deps): Bump golang.org/x/term from 0.5.0 to 0.7.0 by @dependabot in #632
- fix: fixed notation/test/e2e/suite/plugin by @patrickzheng200 in #639
- build: bump up versions and dependencies by @yizha1 in #643
New Contributors
- @qweeah made their first contribution in #593
- @ningziwen made their first contribution in #566
Full Changelog: v1.0.0-rc.3...v1.0.0-rc.4
Contributors
qweeah, duffney, and 5 other contributors