Download Latest Version v0.6.1.tar.gz (5.7 MB)
Email in envelope

Get an email when there's a new version of Notary

Home / v0.3.0
Name Modified Size InfoDownloads / Week
Parent folder
notary-Linux-static-amd64 2016-06-15 13.0 MB
0
notary-Darwin-amd64 2016-06-15 11.5 MB
0
notary-Linux-amd64 2016-05-11 15.7 MB
0
README.md 2016-05-10 2.1 kB
0
v0.3.tar.gz 2016-05-10 5.4 MB
0
v0.3.zip 2016-05-10 6.3 MB
0
Totals: 6 Items   52.0 MB 0

v0.3

  • Root rotations
  • RethinkDB support as a storage backend for Server and Signer
  • A new TUF repo builder that merges server and client validation
  • Trust Pinning: configure known good key IDs and CAs to replace TOFU.
  • Add --input, --output, and --quiet flags to notary verify command
  • Remove local certificate store. It was redundant as all certs were also stored in the cached root.json
  • Add environment variable for automating delegation key passphrase entry
  • Update formatting for delegation list output to be multiline for keys and paths
  • Update delegation behavior to not fallback to parent roles if specified role does not exist
  • Further restrict JWT token permissions to remove unnecessary actions
  • Cleanup of dead code in client side key storage logic
  • Update project to Go 1.6.1
  • Reorganize vendoring to meet Go 1.6+ standard. Still using Godeps to manage vendored packages
  • Add targets by hash, no longer necessary to have the original target data available
  • Active Key ID verification during signature verification
  • Switch all testing from assert to require, reduces noise in test runs
  • Use alpine based images for smaller downloads and faster setup times
  • Clean up out of data signatures when re-signing content
  • Set cache control headers on HTTP responses from Notary Server
  • Add sha512 support for targets
  • Move SQLite dependency to tests only so it doesn't get built into official images
  • Fixed asking for password to list private repositories
  • Enable using notary client with username/password in a scripted fashion
  • Fix static compilation of client
  • Enforce TUF version to be >= 1, previously 0 was acceptable although unused
  • json.RawMessage should always be used as *json.RawMessage due to concepts of addressability in Go and effects on encoding

Checksums

Sha256

notary-Darwin-amd64             dfca69606e920142611209e50aa14124b83ac6af54473bf0102d2ceea2355140
notary-Linux-amd64              1cb85573282dd38657dc2af86fd403ceea5cd7440ac7f418f8d898fa5a9d071a
notary-Linux-static-amd64       66e7fbfb03dc88c0b592b0492ff66b8c325a204738c4c9447239fcaeb47be635
Source: README.md, updated 2016-05-10