✨ New Features
- feat: support certificate revocation checking using Certificate Revocation List (CRL) with cache support during Notary Project signature validation. @junczhu in #1890 , #1900 , #1941
- feat: improve the Ratify out-of-box experience by incorporating additional Helm chart parameters for configuring the Notary Project trust policy by @shahramk64 in #1982
- feat: support enabled status for kmp keys/certs by @duffney in #1874
- feat: support alibaba cloud rrsa store auth provider by @DahuK in #1909
✨ Other Enhancements
- Report more debug info in external data response by @binbin-li #1697
- Make notation verifier installation optional on ratify installation by @shahramk64 #1719
- Migrate to latest Azure container registry SDK by @shahramk64 #1829
- Refactor Azure authentication support to use azidentity by @shahramk64 #1904
- Sign Ratify release assets by @akashsinghal #1947
- Update Kubernetes support matrix by @shahramk64 #2013
- Additional env vars for ratify container via helm chart by @mannbiher in #1854
- Allow service account annotations by @mannbiher in #1907
- Remove prefix from notation verifiers trustedIdentities by @shahramk64 #2057
🔐 Security
- chore: bump up golang.org/x/crypto pkg to fix vuln by @junczhu in #1981
- fix: fix vuln in /x/net pkg by @junczhu in #1993
- fix: enforce host checking before exchanging a refresh token (#2069) by @binbin-li in #2071
- chore: add more acr endpoints (#2079) by @binbin-li in #2080
- chore: bump ristretto pkg version (#2085) by @akashsinghal in #2087
📄 Documentation
- docs: add config path arg to launch.json, update instructions by @shahramk64 in #1800
- docs: some improvement in release instructions by @junczhu in #1815
- docs: add commits doc to contributing guide by @susanshi in #1844
- docs: design proposal for tag and digest co-existing [ISSUE 1657] by @emalprokt in #1793
- docs: add CRL Design by @junczhu in #1789
- docs: Create proposal for verifying 'last-n' artifacts only. by @asafalgawi in #1797
- docs: nVersionCount support for KMP design doc by @duffney in #1831
- docs: update dev image release guidance by @akashsinghal in #1974
- docs: Fix typos in CONTRIBUTING.md by @cclauss in #2005
🎉 New Contributors
- @emalprokt made their first contribution in #1793
- @asafalgawi made their first contribution in #1797
- @JoupainMD made their first contribution in #1954
- @cclauss made their first contribution in #2005
- @DahuK made their first contribution in #2012
Full Changelog: v1.3.2...v1.4.0
Contributors
DahuK, cclauss, and 10 other contributors