Skip to content

Releases: theupdateframework/tuf-on-ci

v0.18.0

22 Sep 11:08
@github-actions github-actions
v0.18.0
0ef6631
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v0.18.0 Latest
Latest
  • repo: tuf-on-ci-test-client now sets a user-agent header
  • Dependency updates
Assets 4
Loading

v0.17.0

14 Jul 09:08
@github-actions github-actions
v0.17.0
c9dd13e
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v0.17.0

Dependency update release.

  • This fixes an ongoing issue with the upload-repository action:
    #629
Loading

v0.16.1

14 Apr 11:19
@github-actions github-actions
v0.16.1
fcf5273
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v0.16.1

This release contains dependency updates and minor improvements in repository
side.

Loading

v0.16.0

04 Feb 14:12
@github-actions github-actions
v0.16.0
5105c4b
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v0.16.0

This release contains minor improvements to both repository and signer.

  • Verify keyid calculation in signing event (#536)
  • Improve error message when Yubikey authentication fails (#528)
  • Improve python project metadata (#533)

Updating a repository from 0.15 does not require changes in GitHub workflow files.

Loading

v0.15.2

21 Jan 08:55
@github-actions github-actions
v0.15.2
This tag was signed with the committer’s verified signature.
kommendorkapten Fredrik Skogman
SSH Key Fingerprint: ekIXhtcETjekHx8y5eNz1afKi10xC6/oH3dz/YbL7GU
Verified
Learn about vigilant mode.
c7edc80
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v0.15.2

This point release fixes a bug introduced in 0.14.

  • Only return open pull requests (PR) when searching for a signing
    event (#518). In cases where the signers rely on a fork to sign and
    then create a PR back to the main repository, both PRs will contain
    the same git commit at tip, and so multiple PRs would be returned,
    now only open PRs are considered.

Updating from 0.14 does not require any changes GitHub workflow files.

Loading

v0.15.1

15 Jan 12:35
@github-actions github-actions
v0.15.1
fffb59f
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v0.15.1

This point release fixes a bug introduced in 0.15.

  • Fixed datetime handling in test-repository (#512): This
    is fallout from python-tuf upgrade in 0.15.0 and resulted in
    unexpected test-repository action failure
Loading

v0.15.0

15 Jan 09:50
@github-actions github-actions
v0.15.0
bd78811
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v0.15.0
  • Fixed repository status page HTML rendering (#430)
  • Dependency updates: Most importantly python-tuf and securesystemslib are now at
    current versions.

Updating from 0.14 does not require any changes to GitHub workflow files.

Loading

v0.14.0

02 Dec 14:05
@github-actions github-actions
v0.14.0
This tag was signed with the committer’s verified signature.
kommendorkapten Fredrik Skogman
SSH Key Fingerprint: ekIXhtcETjekHx8y5eNz1afKi10xC6/oH3dz/YbL7GU
Verified
Learn about vigilant mode.
fce107e
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v0.14.0
  • Updates the status page to include expiration time for metadata (#431)
  • Compatibility updates for tuf-on-ci-sign, now runs on Python 3.9 (default macOS Python version) (#433)
  • Performance improvements to the signing-event action (#469)
  • Dependency updates
Loading

v0.13.0

02 Sep 08:49
@github-actions github-actions
v0.13.0
27c49c0
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v0.13.0
  • Accept usernames without @ in .tuf-on-ci-sign.ini (#415)
  • Add workaround for Sigstore root-signing migration (#422)
  • Dependency updates
Loading

v0.12.0

19 Aug 10:52
@github-actions github-actions
v0.12.0
89d2dad
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v0.12.0

In addition to dependency updates, this release contains one new (experimental) repository
feature: Online signed targets. Updating to this version does not require any changes to
GitHub workflow files.

The Online signed targets feature (#75) currently has some significant limitations
and may be changed in the future, see DELEGATION-MANUAL.md for details.

Loading