Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
security
sops
sops.changes
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File sops.changes of Package sops
------------------------------------------------------------------- Sun Oct 06 08:22:29 UTC 2024 - opensuse_buildservice@ojkastl.de - Update to version 3.9.1: * Add missing newlines. * Add changelog for 3.9.1. * Bump version to 3.9.1. * Do not ignore errors when trying to parse a config file. * Update all go deps with 'go get -t -u ./...'. * build(deps): Bump the rust group in /functional-tests with 5 updates * build(deps): Bump the go group with 7 updates * Add Cargo.lock for better reproducability of functional tests. * build(deps): Bump the go group with 7 updates * build(deps): Bump the ci group with 2 updates * Dependabot: fix config for Docker, add config for Rust/Cargo. * Show changes in shamir_threshold when updating keys. * Do not encrypt if a key group is empty, or there are no key groups. * Fix checkout action version. * Use Go version from go.mod. * Build release with Go 1.22.x. * Allow edit subcommand to create files. * Build 1.22 1.23 because 1.21 is unsupported without security fixes * Review: Add test "matrix" but only for 1.22 * feat(build): Build last 2 Go versions * refactor: specify missing file in error message * build(deps): Bump github/codeql-action in the ci group * build(deps): Bump the go group with 10 updates * Add 'check' task to CI that makes sure everything is green. * sops_test: add more tests on errors * sops_test: homogenize use of asserts * tests: add coverage for unset * build(deps): Bump github/codeql-action in the ci group * build(deps): Bump the go group with 4 updates * Fix `--config` being ignored by `loadConfig` * github actions: set rust version globally * linters: pin version of Rust * functional tests: formatting lint * github actions: add Rust linter * Added example of having age recipients in .sops.yaml * Actually use option --shamir-secret-sharing-threshold. * build(deps): Bump github.com/opencontainers/runc from 1.1.13 to 1.1.14 * build(deps): Bump the go group with 12 updates * tests: ignore env var SOPS_AGE_KEY_FILE * build(deps): Bump the ci group with 2 updates * build(deps): Bump the go group with 7 updates * build(deps): Bump the ci group with 2 updates * Bump go version. * build(deps): Bump the go group across 1 directory with 15 updates * build(deps): Bump the ci group with 2 updates * Use ReST admonition syntax for note * Note on the name of the configuration file * build(deps): Bump the ci group with 3 updates * build(deps): Bump github.com/docker/docker * build(deps): Bump the ci group with 2 updates * build(deps): Bump the go group with 5 updates * build(deps): Bump github.com/docker/docker * build(deps): Bump github/codeql-action in the ci group * build(deps): Bump the go group with 4 updates * build(deps): Bump the ci group across 1 directory with 5 updates * build(deps): Bump the go group with 5 updates * build(deps): Bump the ci group with 3 updates * build(deps): Bump the go group with 10 updates * build(deps): Bump the go group with 11 updates * build(deps): Bump the ci group with 4 updates * Fix the URL used for determining the latest SOPS version. * build(deps): Bump github/codeql-action in the ci group * build(deps): Bump the go group with 8 updates * Explicitly mark goreleaser's version, to avoid confusion with the Go version. ------------------------------------------------------------------- Wed Jul 03 15:43:36 UTC 2024 - opensuse_buildservice@ojkastl.de - Update to version 3.9.0: * Respect aws_profile from Keygroup Config by @Kouzukii in #1049 * build(deps): Bump the go group with 6 updates by @dependabot in #1327 * build(deps): Bump the go group with 3 updates by @dependabot in #1328 * build(deps): Bump the go group with 1 update by @dependabot in #1330 * build(deps): Bump github.com/docker/docker from 20.10.24+incompatible to 24.0.7+incompatible by @dependabot in #1336 * build(deps): Bump the go group with 3 updates by @dependabot in #1334 * Improve README.rst by @Ph0tonic in #1339 * Fix typos by @felixfontein in #1337 * build(deps): Bump the go group with 7 updates by @dependabot in #1344 * Add --mac-only-encrypted to compute MAC only over values which end up encrypted by @mitar in #973 * build(deps): Bump the ci group with 1 update by @dependabot in #1347 * build(deps): Bump the go group with 7 updates by @dependabot in #1348 * README: Correctly tag code as yaml-stream by @felixfontein in #1350 * build(deps): Bump the go group with 5 updates by @dependabot in #1354 * use getUserConfigDir also in tests by @bkreitch in #1346 * Overwrite home dir in vault test by @bkreitch in #1349 * Allow configuration of indentation for YAML and JSON stores by @Ph0tonic in #1273 * build(deps): Bump github.com/go-jose/go-jose/v3 from 3.0.0 to 3.0.1 by @dependabot in #1357 * build(deps): Bump the go group with 4 updates by @dependabot in #1360 * build(deps): Bump the ci group with 1 update by @dependabot in #1359 * Fix TestGnuPGHome_Validate by @stormentt in #1370 * build(deps): Bump the go group with 6 updates by @dependabot in #1373 * build(deps): Bump the ci group with 2 updates by @dependabot in #1376 * Docs: indent is used both for encryption and decryption by @felixfontein in #1372 * fix a bug where not having a config results in a panic by @stormentt in #1371 * Polish the 'sops help' output a bit by @felixfontein in #1341 * introduce a --pristine flag to sops exec-env by @e-nikolov in #912 * Allow to pass multiple paths to 'updatekeys' by @sj14 in #1274 * Warn/fail if the wrong number of arguments is provided by @felixfontein in #1342 * Allow to override fileName with different value by @felixfontein in #1332 * Sort masterkeys according to decryption-order by @bkreitch in #1345 * build(deps): Bump the ci group with 4 updates by @dependabot in #1382 * build(deps): Bump the go group with 5 updates by @dependabot in #1381 * Deprecate the --background option to exec-env and exec-file by @felixfontein in #1379 * build(deps): Bump golang.org/x/crypto from 0.16.0 to 0.17.0 by @dependabot in #1383 * build(deps): Bump the ci group with 1 update by @dependabot in #1386 * build(deps): Bump the go group with 5 updates by @dependabot in #1385 * Consolidate Flatten/Unflatten pre/post processing by @lancerushing in #1356 * INI, DotEnv stores: shamir_threshold is an integer by @felixfontein in #1394 * Improve integration tests: reformat test code, make sure exit codes are always checked by @felixfontein in #1390 * Make check whether file contains invalid keys for encryption dependent on output store by @felixfontein in #1393 * Create a constant for the 'sops' metadata key by @felixfontein in #1398 * build(deps): Bump github.com/cloudflare/circl from 1.3.3 to 1.3.7 by @dependabot in #1408 * build(deps): Bump the ci group with 4 updates by @dependabot in #1425 * build(deps): Bump github.com/opencontainers/runc from 1.1.5 to 1.1.12 by @dependabot in #1428 * build(deps): Bump the go group with 10 updates by @dependabot in #1429 * build(deps): Bump the ci group with 4 updates by @dependabot in #1432 * Warn if more than one command is used by @felixfontein in #1388 * Move extraction of encryption and rotation options to separate functions by @felixfontein in #1389 * Add separate subcommands for encryption, decryption, rotating, editing, and setting values by @felixfontein in #1391 * Add basic tests for exec-env and exec-file by @felixfontein in #1396 * build with go 1.21 and update dependencies by @b-dean in #1427 * build(deps): Bump the go group with 4 updates by @dependabot in #1439 * sops: fix typo in interface name by @duthils in #1477 * Fix function name in comment by @pullmerge in #1484 * build(deps): Bump the ci group across 1 directory with 9 updates by @dependabot in #1498 * build(deps): Bump github.com/go-jose/go-jose/v3 from 3.0.1 to 3.0.3 by @dependabot in #1454 * build(deps): Bump google.golang.org/protobuf from 1.32.0 to 1.33.0 by @dependabot in #1460 * build(deps): Bump github.com/docker/docker from 24.0.7+incompatible to 24.0.9+incompatible by @dependabot in #1466 * build(deps): Bump golang.org/x/net from 0.21.0 to 0.23.0 by @dependabot in #1489 * build(deps): Bump actions/setup-go from 5.0.0 to 5.0.1 in the ci group by @dependabot in #1503 * build(deps): Bump the ci group with 2 updates by @dependabot in #1508 * LoadCreationRuleForFile: correctly handle nil without error in callers by @felixfontein in #1506 * build(deps): Bump the ci group with 2 updates by @dependabot in #1510 * build(deps): Bump the ci group with 2 updates by @dependabot in #1516 * Fix CVE-2024-2660 by @TheoBrigitte in #1519 * build(deps): Bump the ci group with 2 updates by @dependabot in #1521 * fix(Makefile): set locale to make tests pass by @jonasbadstuebner in #1492 * build(deps): Bump the ci group with 2 updates by @dependabot in #1524 * Adjust Makefile to new goreleaser 6.0.0 release by @felixfontein in #1526 * build(deps): Bump the go group across 1 directory with 23 updates by @dependabot in #1525 * update documentation for age by @tomaszduda23 in #1399 * exec-file: if --filename is used, use the provided filename without random suffix by @felixfontein in #1474 * build(deps): Bump github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.5.2 to 1.6.0 by @dependabot in #1528 * Do not use DotEnv store for exec-env, but specialized environment serializing code by @felixfontein in #1436 * build(deps): Bump the ci group with 2 updates by @dependabot in #1534 * Decryption: do not fail if no matching creation_rule is present in config file by @felixfontein in #1434 * add filestatus command by @endorama in #545 * build(deps): Bump the go group across 1 directory with 16 updates by @dependabot in #1540 * build(deps): Bump the go group across 1 directory with 4 updates by @dependabot in #1543 * add command unset by @duthils in #1475 * Update sops.go comment by @rjeczkow in #1544 * Support using comments to select parts to encrypt by @felixfontein in #1392 * Feature: merge key for key groups and make keys unique by @jonasbadstuebner in #1493 * Update all go deps by @felixfontein in #1545 * Release 3.9.0 by @felixfontein in #1546 ------------------------------------------------------------------- Thu Oct 12 05:34:00 UTC 2023 - kastl@b1-systems.de - Update to version 3.8.1: * Release v3.8.1 * Update dependencies * Add section in CONTRIBUTING.md on docs changes. * Add checkdocs, checkrst, and checkmd make targets. * Add workflow for rstcheck and mdl. * Change some SOPSs back to sops. * Normalize SOPS usages. * Normalize indentation for code blocks and YAML files. * Improve MD files (with mdl feedback). * Improve RST files (with rstcheck feedback). * pgp: further improve import error format * pgp: better error reporting for missing GPG binary * docs: document AWS environment variables * build(deps): Bump the go group with 7 updates * Make sure to wrap raw errors with toExitError(). * Report key rotation errors. * Check err for nil in tests. * Defer only after checking err. * Handle unhandled errors. * Ignore irrelevant return value (it is always nil). * decrypt: fix dropped error * pgp: do not require abs path for SopsGpgExecEnv * Make error the last return value * Handle return values of dec.Token() to improve error messages. * Fix versions in comments * build(deps): Bump the ci group with 1 update * build(deps): Bump the go group with 4 updates * Fix descriptions of unencrypted-regex and encrypted-regex flags. * Reject completely empty documents. * On macOS, prefer XDG_CONFIG_HOME over os.UserConfigDir() * Improve handling of errors when binary store handles bad data * Delete sops encrypted file we don't have keys for. * pgp: remove `--no-default-keyring` argument * pgp: improve handling of GnuPG home dir * build(deps): Bump the ci group with 3 updates ------------------------------------------------------------------- Wed Oct 4 19:47:35 UTC 2023 - Johannes Kastl <kastl@b1-systems.de> - fix broken sops executable (sorry...) ------------------------------------------------------------------- Mon Sep 25 06:05:27 UTC 2023 - Johannes Kastl <kastl@b1-systems.de> - update to 3.8.0: * Features: - Support --version without network requests using --disable-version-check (#1115) - Support --input-type for updatekeys command (#1116) * Improvements: - pgp: modernize and improve, and add tests (#1054, #1282) - azkv: update SDK to latest, add tests, tidy (#1067, #1092, #1256) - age: improve identity loading, add tests, tidy (#1064) - kms: AWS SDK V2, allow creds config, add tests (#1065, #1257) - gcpkms: update SDK to latest, add tests, tidy (#1072, #1255) - hcvault: update API, add tests, tidy (#1085) - Do not report version when upstream --version check fails (#1124) - Use GitHub endpoints in --version command (#1261) - Close temporary file before invoking editor to widen support on Windows (#1265) - Update dependencies (#1063, #1091, #1147, #1242, #1260, #1264, #1275, #1280, #1283) - Deal with various deprecations of dependencies (#1113, #1262) * Bug fixes: - Ensure YAML comments are not displaced (#1069) - Ensure default Google credentials can be used again after introduction of GOOGLE_CREDENTIALS (#1249) - Avoid duplicate logging of errors in some key sources (#1146, #1281) - Using --set on a root level key does no longer truncate existing values (#899) - Ensure stable order of SOPS parameters in dotenv file (#1101) * Project changes: - Update Go to 1.20 (#1148) - Update rustc functional tests to v1.70.0 (#1234) - Remove remaining CircleCI workflow (#1237) - Run CLI workflow on main (#1243) - Delete obsolete validation/ artifact (#1248) - Rename Go module to github.com/getsops/sops/v3 (#1247) - Revamp release automation, including (Cosign) signed container images and checksums file, SLSA3 provenance and SBOMs (#1250) - Update various bits of documentation (#1244) - Add missing --encrypt flag from Vault example (#1060) - Add documentation on how to use age in .sops.yaml (#1192) - Improve Make targets and address various issues (#1258) - Ensure clean working tree in CI (#1267) - Fix CHANGELOG.rst formatting (#1269) - Pin GitHub Actions to full length commit SHA and add CodeQL (#1276) - Enable Dependabot for Docker, GitHub Actions and Go Mod (#1277) - Generate versioned .intoto.jsonl (#1278) - Update CI dependencies (#1279) ------------------------------------------------------------------- Tue May 24 12:47:10 UTC 2022 - rombert@apache.org - Update to version 3.7.3: * prep for v3.7.3 * Use custom GOOGLE_CREDENTIALS or fallback to default * Replace x/crypto/openpgp with ProtonMail/go-crypto * Update remaining dependencies * Update golang.org/x/{net,oauth2,sys} dependencies * Update keyservice implementation dependencies * Update golang.org/x/crypto * Limit role session name length to 64 characters. * keyservice: accept KeyServiceServer in LocalClient * Use latest dockerd in CI to allow build alpine image (#870) * Add tests for single key * Make `masterKeyFromRecipient` private * This fixes a bug with age encryption when specifying multiple age recipients * Explicitly build linux amd64 binary * Remove duplicated stage from Dockerfile.alpine * Upgrade all dependencies * Build alpine container in CI (#870) * Update keysource.go * support gcp credentials as env var * Allow empty maps for yaml (#907) * Add a test to reproduce #907 ------------------------------------------------------------------- Wed Mar 16 08:03:54 UTC 2022 - rombert@apache.org - Update to version 3.7.2: * Fixed CHANGELOG formatting * prep v3.7.2 * Add arm64 .deb and .rpm builds * README and author tweaks * Change labeling and upload linux arm64 * Move age environment variable names to constants * Support SOPS_AGE_KEY environment variable * Added support for go 1.16 and darwin-arm64 * Tests should not fail fast ------------------------------------------------------------------- Fri May 7 09:48:16 UTC 2021 - Chris Coutinho <chrisbcoutinho@gmail.com> - Initial commit
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor
