Releases: theupdateframework/python-tuf
v5.1.0
Changed
- ngclient: default user-agent was updated from "tuf/x.y.z" to "python-tuf/x.y.z" (#2632)
- ngclient: max_root_rotations default value was bumped to 256 to prevent a too small value
from creating issues in actual deployments were the embedded root is not easily
updateable (#2675) - repository: do_snapshot() and do_timestamp() now always create new versions if current version
is not correctly signed (#2650) - Various infrastructure and documentation improvements
v5.0.0
lukpueh
Lukas Pühringer
This release, most notably, marks stable securesystemslib v1.0.0 as minimum
requirement. The update causes a minor break in the new DSSE API (see below)
and affects users who also directly depend on securesystemslib. See the securesystemslib release
notes
and the updated python-tuf examples (#2617) for details. ngclient API remains
backwards-compatible.
Changed
v4.0.0
This release is a small API change for Metadata API users (see below).
ngclient API is compatible but optional DSSE support has been added.
Added
- Added optional DSSE support to Metadata API and ngclient (#2436)
Changed
- Metadata API: Improved verification functionality for repository users (#2551):
- This is an API change for Metadata API users (
Root.get_verification_result()andTargets.get_verification_result()
specifically) Root.get_root_verification_result()has been added to handle the special
case of root verification
- This is an API change for Metadata API users (
- Started using UTC datetimes instead of naive datetimes internally (#2573)
- Constrain securesystemslib dependency to <0.32.0 in preparation for future
securesystemslib API changes - Various build, test and lint improvements
v3.1.1
This is a security fix release to address advisory GHSA-77hh-43cm-v8j6. The issue does not affect tuf.ngclient users, but could affect tuf.api.metadata users.
Changed
- Added additional input validation to tuf.api.metadata.Targets.get_delegated_role()
v3.1.0
lukpueh
Lukas Pühringer
See CHANGELOG.md for details.
v3.0.0
lukpueh
Lukas Pühringer
See CHANGELOG.md for details.
v2.1.0
lukpueh
Lukas Pühringer
See CHANGELOG.md for details.
v2.0.0
lukpueh
Lukas Pühringer
See CHANGELOG.md for details.
v1.1.0
See CHANGELOG.md for details.
v1.0.0
This release makes ngclient and the Metadata API the supported python-tuf APIs.
It also removes the legacy implementation as documented in the 1.0.0 announcement:
all library code is now contained in tuf.api or tuf.ngclient.
See Python-TUF reaches version 1.0.0 for a blog post about this release.
Added
Changed
- Metadata API: Disallow microseconds in expiry (#1712)
- Metadata API: Preserve role keyid order (#1754)
- Metadata API: Make exceptions more consistent (#1725, #1734, #1787, #1840,
#1836) - Metadata API: Update supported spec version to "1.0.28" (#1825)
- Metadata API: Accept legacy spec version "1.0" (#1796)
- Metadata API: Accept custom fields in Metadata (#1861)
- ngclient: Remove temporary file in failure cases (#1757)
- ngclient: Explicitly encode rolename in URL (#1759)
- ngclient: Allow HTTP payload compression (#1774)
- ngclient: Make exceptions more consistent (#1799, #1810)
- docs: Improve documentation (#1744, #1749, #1750, #1755, #1771, #1776, #1772,
#1780, #1781, #1800, #1815, #1820, #1829, #1838, #1850, #1853, #1855, #1856,
#1868, #1871) - build: Various build infrastructure improvements (#1718, #1724, #1760, #1762,
#1767, #1803, #1830, #1832, #1837, #1839) - build: Stop supporting EOL Python 3.6 (#1783)
- build: Update dependencies (#1809, #1827, #1834, #1863, #1865, #1870)
Removed
- Remove all legacy code including old client, repository_tool, repository_lib
and the scripts (#1790) - Metadata API: Remove modification helper methods that are no longer necessary
(#1736, #1740, #1743) - tests: Remove client tests that were replaced with better ones (#1741)
- tests: Stop using unittest_toolbox (#1792)
- docs: Remove deprecated documentation (#1768, #1769, #1773, #1848)