From 1698f15e00aba9b4dd386a41f43323118a96b0a1 Mon Sep 17 00:00:00 2001 From: "Patrick J.P. Culp" Date: Tue, 22 Aug 2023 21:28:58 +0000 Subject: [PATCH] Prepare crate releases - tough v0.14.0 - tuftool v0.10.0 - tough-ssm v0.9.0 - tough-kms v0.6.0 --- Cargo.lock | 8 ++++---- tough-kms/CHANGELOG.md | 10 +++++++++- tough-kms/Cargo.toml | 4 ++-- tough-ssm/CHANGELOG.md | 12 +++++++++++- tough-ssm/Cargo.toml | 4 ++-- tough/CHANGELOG.md | 21 ++++++++++++++++++++- tough/Cargo.toml | 2 +- tuftool/CHANGELOG.md | 16 +++++++++++++++- tuftool/Cargo.toml | 8 ++++---- 9 files changed, 68 insertions(+), 17 deletions(-) diff --git a/Cargo.lock b/Cargo.lock index cceb7a77..7c075c3a 100644 --- a/Cargo.lock +++ b/Cargo.lock @@ -2173,7 +2173,7 @@ dependencies = [ [[package]] name = "tough" -version = "0.13.0" +version = "0.14.0" dependencies = [ "chrono", "dyn-clone", @@ -2201,7 +2201,7 @@ dependencies = [ [[package]] name = "tough-kms" -version = "0.5.0" +version = "0.6.0" dependencies = [ "aws-config", "aws-sdk-kms", @@ -2221,7 +2221,7 @@ dependencies = [ [[package]] name = "tough-ssm" -version = "0.8.0" +version = "0.9.0" dependencies = [ "aws-config", "aws-sdk-ssm", @@ -2299,7 +2299,7 @@ checksum = "3528ecfd12c466c6f163363caf2d02a71161dd5e1cc6ae7b34207ea2d42d81ed" [[package]] name = "tuftool" -version = "0.9.0" +version = "0.10.0" dependencies = [ "assert_cmd", "aws-config", diff --git a/tough-kms/CHANGELOG.md b/tough-kms/CHANGELOG.md index 4a1f8184..9a77b123 100644 --- a/tough-kms/CHANGELOG.md +++ b/tough-kms/CHANGELOG.md @@ -4,6 +4,13 @@ All notable changes to this project will be documented in this file. The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html). +## [0.6.0] - 2023-08-22 +### Changes +- Bump AWS SDK for Rust [#610] +- Other dependency updates + +[#610]: https://github.com/awslabs/tough/pull/610 + ## [0.5.0] - 2023-03-02 ### Changes - Replaced a deprecated function (aws_sdk_kms::Client::from_conf_conn) [#568] @@ -107,7 +114,8 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ### Added - Everything! -[Unreleased]: https://github.com/awslabs/tough/compare/tough-kms-v0.5.0...develop +[Unreleased]: https://github.com/awslabs/tough/compare/tough-kms-v0.6.0...develop +[0.6.0]: https://github.com/awslabs/tough/compare/tough-kms-v0.5.0...tough-kms-v0.6.0 [0.5.0]: https://github.com/awslabs/tough/compare/tough-kms-v0.4.2...tough-kms-v0.5.0 [0.4.2]: https://github.com/awslabs/tough/compare/tough-kms-v0.4.1...tough-kms-v0.4.2 [0.4.1]: https://github.com/awslabs/tough/compare/tough-kms-v0.4.0...tough-kms-v0.4.1 diff --git a/tough-kms/Cargo.toml b/tough-kms/Cargo.toml index de6684da..74e5b39b 100644 --- a/tough-kms/Cargo.toml +++ b/tough-kms/Cargo.toml @@ -1,6 +1,6 @@ [package] name = "tough-kms" -version = "0.5.0" +version = "0.6.0" description = "Implements AWS KMS as a key source for TUF signing keys" authors = ["Shailesh Gothi "] license = "MIT OR Apache-2.0" @@ -15,7 +15,7 @@ aws-sdk-rust-tls = ["aws-config/native-tls", "aws-sdk-kms/native-tls"] aws-sdk-rust-rustls = ["aws-config/rustls", "aws-sdk-kms/rustls"] [dependencies] -tough = { version = "0.13", path = "../tough", features = ["http"] } +tough = { version = "0.14", path = "../tough", features = ["http"] } ring = { version = "0.16", features = ["std"] } aws-sdk-kms = "0.28" aws-config = "0.55" diff --git a/tough-ssm/CHANGELOG.md b/tough-ssm/CHANGELOG.md index 09179a7e..e25c4db1 100644 --- a/tough-ssm/CHANGELOG.md +++ b/tough-ssm/CHANGELOG.md @@ -4,6 +4,15 @@ All notable changes to this project will be documented in this file. The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html). +## [0.9.0] - 2023-08-22 +### Changes +- Bump AWS SDK for Rust [#610] +- Remove indirect deps from Cargo.toml [#654] +- Other dependency updates + +[#610]: https://github.com/awslabs/tough/pull/610 +[#654]: https://github.com/awslabs/tough/pull/654 + ## [0.8.0] - 2023-03-02 ### Changes - Remove minor/patch versions from Cargo.tomls [#573] @@ -113,7 +122,8 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ### Added - Everything! -[Unreleased]: https://github.com/awslabs/tough/compare/tough-ssm-v0.8.0...develop +[Unreleased]: https://github.com/awslabs/tough/compare/tough-ssm-v0.9.0...develop +[0.9.0]: https://github.com/awslabs/tough/compare/tough-ssm-v0.8.0...tough-ssm-v0.9.0 [0.8.0]: https://github.com/awslabs/tough/compare/tough-ssm-v0.7.2...tough-ssm-v0.8.0 [0.7.2]: https://github.com/awslabs/tough/compare/tough-ssm-v0.7.1...tough-ssm-v0.7.2 [0.7.1]: https://github.com/awslabs/tough/compare/tough-ssm-v0.7.0...tough-ssm-v0.7.1 diff --git a/tough-ssm/Cargo.toml b/tough-ssm/Cargo.toml index 6fa0fcda..60ed5d3b 100644 --- a/tough-ssm/Cargo.toml +++ b/tough-ssm/Cargo.toml @@ -1,6 +1,6 @@ [package] name = "tough-ssm" -version = "0.8.0" +version = "0.9.0" description = "Implements AWS SSM as a key source for TUF signing keys" authors = ["Zac Mrowicki "] license = "MIT OR Apache-2.0" @@ -15,7 +15,7 @@ aws-sdk-rust-tls = ["aws-config/native-tls", "aws-sdk-ssm/native-tls"] aws-sdk-rust-rustls = ["aws-config/rustls", "aws-sdk-ssm/rustls"] [dependencies] -tough = { version = "0.13", path = "../tough", features = ["http"] } +tough = { version = "0.14", path = "../tough", features = ["http"] } aws-sdk-ssm = "0.28" aws-config = "0.55" snafu = { version = "0.7", features = ["backtraces-impl-backtrace-crate"] } diff --git a/tough/CHANGELOG.md b/tough/CHANGELOG.md index fdd09aee..27df934e 100644 --- a/tough/CHANGELOG.md +++ b/tough/CHANGELOG.md @@ -4,6 +4,24 @@ All notable changes to this project will be documented in this file. The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html). +## [0.14.0] - 2023-08-22 +### Security Fixes +- Bump openssl from 0.10.45 to 0.10.55 [#596], [#610], [#644] + +### Changes +- Fix race condition in system_time [#591], [#609] +- Bump AWS SDK for Rust [#610] +- Addressed new clippy lints [#644] +- Fix up path prefix check for Windows, thanks @jon-zu [#656] +- Various dependency updates + +[#591]: https://github.com/awslabs/tough/pull/591 +[#596]: https://github.com/awslabs/tough/pull/596 +[#609]: https://github.com/awslabs/tough/pull/609 +[#610]: https://github.com/awslabs/tough/pull/610 +[#644]: https://github.com/awslabs/tough/pull/644 +[#656]: https://github.com/awslabs/tough/pull/656 + ## [0.13.0] - 2023-03-02 ### Breaking Changes - Add a lifetime parameter to Transport::fetch and Repository::read_target, thanks @sunshowers [#563] @@ -223,7 +241,8 @@ For changes that require modification of calling code see #120 and #121. ### Added - Everything! -[Unreleased]: https://github.com/awslabs/tough/compare/tough-v0.13.0...develop +[Unreleased]: https://github.com/awslabs/tough/compare/tough-v0.14.0...develop +[0.14.0]: https://github.com/awslabs/tough/compare/tough-v0.13.0...tough-v0.14.0 [0.13.0]: https://github.com/awslabs/tough/compare/tough-v0.12.5...tough-v0.13.0 [0.12.5]: https://github.com/awslabs/tough/compare/tough-v0.12.4...tough-v0.12.5 [0.12.4]: https://github.com/awslabs/tough/compare/tough-v0.12.3...tough-v0.12.4 diff --git a/tough/Cargo.toml b/tough/Cargo.toml index ab9a0d4f..3b7e85ca 100644 --- a/tough/Cargo.toml +++ b/tough/Cargo.toml @@ -1,6 +1,6 @@ [package] name = "tough" -version = "0.13.0" +version = "0.14.0" description = "The Update Framework (TUF) repository client" authors = ["iliana destroyer of worlds "] license = "MIT OR Apache-2.0" diff --git a/tuftool/CHANGELOG.md b/tuftool/CHANGELOG.md index 35629e04..e137aa27 100644 --- a/tuftool/CHANGELOG.md +++ b/tuftool/CHANGELOG.md @@ -4,6 +4,19 @@ All notable changes to this project will be documented in this file. The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html). +## [0.10.0] - 2023-08-22 +### Changes +- Bump AWS SDK for Rust [#610] +- Allow providing multiple keys to root add-key [#645] +- Add transfer-metadata command [#653] +- Remove indirect deps from Cargo.toml [#654] +- Various dependency updates + +[#610]: https://github.com/awslabs/tough/pull/610 +[#645]: https://github.com/awslabs/tough/pull/645 +[#653]: https://github.com/awslabs/tough/pull/653 +[#654]: https://github.com/awslabs/tough/pull/654 + ## [0.9.0] - 2023-03-02 ### Changes - Remove rust openssl dependencies in tuftool [#569] @@ -205,7 +218,8 @@ Major update: much of the logic in `tuftool` has been factored out and added to ### Added - Everything! -[Unreleased]: https://github.com/awslabs/tough/compare/tuftool-v0.9.0...develop +[Unreleased]: https://github.com/awslabs/tough/compare/tuftool-v0.10.0...develop +[0.10.0]: https://github.com/awslabs/tough/compare/tuftool-v0.9.0...tuftool-v0.10.0 [0.9.0]: https://github.com/awslabs/tough/compare/tuftool-v0.8.2...tuftool-v0.9.0 [0.8.2]: https://github.com/awslabs/tough/compare/tuftool-v0.8.1...tuftool-v0.8.2 [0.8.1]: https://github.com/awslabs/tough/compare/tuftool-v0.8.0...tuftool-v0.8.1 diff --git a/tuftool/Cargo.toml b/tuftool/Cargo.toml index b6601ae0..6907c471 100644 --- a/tuftool/Cargo.toml +++ b/tuftool/Cargo.toml @@ -1,6 +1,6 @@ [package] name = "tuftool" -version = "0.9.0" +version = "0.10.0" description = "Utility for creating and signing The Update Framework (TUF) repositories" authors = ["iliana destroyer of worlds "] license = "MIT OR Apache-2.0" @@ -33,9 +33,9 @@ serde_json = "1" simplelog = "0.12" snafu = { version = "0.7", features = ["backtraces-impl-backtrace-crate"] } tempfile = "3" -tough = { version = "0.13", path = "../tough", features = ["http"] } -tough-kms = { version = "0.5", path = "../tough-kms" } -tough-ssm = { version = "0.8", path = "../tough-ssm" } +tough = { version = "0.14", path = "../tough", features = ["http"] } +tough-kms = { version = "0.6", path = "../tough-kms" } +tough-ssm = { version = "0.9", path = "../tough-ssm" } url = "2" walkdir = "2"