Commit graph

3139 commits

Author SHA1 Message Date
Max
65b5a636df
Merge pull request #1104 from smallstep/max/err-assert
Fix err assert linter warnings - upgrade outdated package
2022-10-13 10:03:03 -07:00
max furman
7203739369
Fix err assert linter warnings - upgrade outdated package 2022-10-12 16:32:26 -07:00
Mariano Cano
e0994bed9d
Merge pull request #1102 from smallstep/yubikey-no-ca
Add test simulating YubiKey v5.2.4
2022-10-11 16:11:24 -07:00
Mariano Cano
a7e597450a
Update acme/challenge_test.go
Co-authored-by: Herman Slatman <hslatman@users.noreply.github.com>
2022-10-11 10:04:42 -07:00
Mariano Cano
7a78c76199
Add test simulating YubiKey v5.2.4
There are YubiKeys v5.2.4 where the attestation intermediate (f9)
does not have a basic constraint extension, so that certificate
is not marked as a CA. The test and CA in this commit imitates
that use case. Currently the test case returns an error as we
don't support it. But if we change the verification to support
this use case, the test should change accordingly.
2022-10-10 18:27:11 -07:00
Max
b142fc70f7
Merge pull request #1099 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.50.0
Bump google.golang.org/grpc from 1.49.0 to 1.50.0
2022-10-10 09:39:11 -07:00
Max
32edc54946
Merge pull request #1100 from smallstep/dependabot/go_modules/github.com/sirupsen/logrus-1.9.0
Bump github.com/sirupsen/logrus from 1.8.1 to 1.9.0
2022-10-10 09:38:31 -07:00
Max
8598ff6a1c
Merge pull request #1101 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.21.0
Bump go.step.sm/crypto from 0.20.0 to 0.21.0
2022-10-10 09:37:54 -07:00
dependabot[bot]
b27d36d556
Bump go.step.sm/crypto from 0.20.0 to 0.21.0
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto) from 0.20.0 to 0.21.0.
- [Release notes](https://github.com/smallstep/crypto/releases)
- [Commits](https://github.com/smallstep/crypto/compare/v0.20.0...v0.21.0)

---
updated-dependencies:
- dependency-name: go.step.sm/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-10-10 16:08:46 +00:00
dependabot[bot]
2522efe27a
Bump github.com/sirupsen/logrus from 1.8.1 to 1.9.0
Bumps [github.com/sirupsen/logrus](https://github.com/sirupsen/logrus) from 1.8.1 to 1.9.0.
- [Release notes](https://github.com/sirupsen/logrus/releases)
- [Changelog](https://github.com/sirupsen/logrus/blob/master/CHANGELOG.md)
- [Commits](https://github.com/sirupsen/logrus/compare/v1.8.1...v1.9.0)

---
updated-dependencies:
- dependency-name: github.com/sirupsen/logrus
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-10-10 16:08:38 +00:00
dependabot[bot]
2ee4218a69
Bump google.golang.org/grpc from 1.49.0 to 1.50.0
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.49.0 to 1.50.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.49.0...v1.50.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-10-10 16:08:34 +00:00
Herman Slatman
90cdcdd2eb
Merge pull request #1097 from smallstep/herman/update-nosql-v0.5.0
Update `github.com/smallstep/nosql` to v0.5.0
2022-10-07 20:05:47 +02:00
Herman Slatman
aa4e5bed76
Update changelog with smallstep/nosql@v0.5.0 fixes 2022-10-07 17:48:54 +02:00
Herman Slatman
764b7bb02f
Update github.com/smallstep/nosql to v0.5.0
This version of `nosql` includes some fixes for MySQL DSNs. The
tag is backdated a bit, as to not include the most recent
changes, which may have a bigger impact.

Also ran `go mod tidy`, `go mod vendor`
2022-10-07 17:44:16 +02:00
Mariano Cano
a8f9b07aae
Merge pull request #1096 from smallstep/attestation-info
Attestation data
2022-10-06 12:48:14 -07:00
Mariano Cano
bd1938b0da
Add support for storing or sending attestation data to linkedca 2022-10-06 12:22:19 -07:00
Max
139e115f6f
Merge pull request #1091 from smallstep/max/pat
[action] replace secrets.PAT with more specific secrets
2022-10-05 15:31:39 -07:00
max furman
c66218330a
[action] replace secrets.PAT with more specific secrets 2022-10-04 22:02:08 -07:00
Max
a258ea3e2d
Merge pull request #1090 from smallstep/max/contextcheck
No longer need to ignore context warnings when context in request
2022-10-04 18:13:13 -07:00
max furman
66858a3870
No longer need to ignore context warnings when context in request
- after upgrade to golangci-lint 1.50.0
2022-10-04 13:49:10 -07:00
Max
72b6cb6d31
Merge pull request #1081 from smallstep/max/action-update
[action] updates and first pass at goreleaser deb
2022-10-04 13:27:00 -07:00
max furman
97cc09e26c
Remove deprecated binaries for awskms and cloudkms 2022-10-03 15:56:41 -07:00
max furman
4c687efb17
[action] updates and first pass at goreleaser deb 2022-10-03 15:56:34 -07:00
Mariano Cano
818dffe6fe
Merge pull request #1089 from smallstep/attestation-error
Revert ValidatedAt
2022-10-03 13:15:42 -07:00
Mariano Cano
21666ba887
Revert "Set timestamp when marking an acme challenge invalid"
This reverts commit 5f130895f3.
2022-10-03 12:56:23 -07:00
Mariano Cano
8538ff06b7
Add missing error case. 2022-10-03 12:54:26 -07:00
Max
37e80964ae
Merge pull request #1088 from smallstep/max/secrets
[action] remove gitleaks secret, add codecov secret and inheritance
2022-10-03 12:36:51 -07:00
Mariano Cano
c071907cd1
Merge pull request #1087 from smallstep/acme-validated-at
Set Challenge ValidateAt
2022-10-03 12:30:53 -07:00
max furman
505c411a67
[action] remove gitleaks secret, add codecov secret and inheritance 2022-10-03 11:55:53 -07:00
Mariano Cano
5f130895f3
Set timestamp when marking an acme challenge invalid 2022-10-03 11:35:51 -07:00
Max
a4f6b1ba0f
Merge pull request #1086 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api/auth/kubernetes-0.3.0
Bump github.com/hashicorp/vault/api/auth/kubernetes from 0.1.0 to 0.3.0
2022-10-03 09:28:06 -07:00
Max
87079a87d6
Merge pull request #1085 from smallstep/dependabot/go_modules/cloud.google.com/go/security-1.8.0
Bump cloud.google.com/go/security from 1.7.0 to 1.8.0
2022-10-03 09:27:15 -07:00
dependabot[bot]
3abb42dd1d
Bump github.com/hashicorp/vault/api/auth/kubernetes from 0.1.0 to 0.3.0
Bumps [github.com/hashicorp/vault/api/auth/kubernetes](https://github.com/hashicorp/vault) from 0.1.0 to 0.3.0.
- [Release notes](https://github.com/hashicorp/vault/releases)
- [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG.md)
- [Commits](https://github.com/hashicorp/vault/compare/v0.1.0...v0.3.0)

---
updated-dependencies:
- dependency-name: github.com/hashicorp/vault/api/auth/kubernetes
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-10-03 16:27:07 +00:00
Max
b1c396c829
Merge pull request #1083 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.19.2
Bump github.com/newrelic/go-agent/v3 from 3.18.0 to 3.19.2
2022-10-03 09:26:08 -07:00
dependabot[bot]
eba73d2aea
Bump github.com/newrelic/go-agent/v3 from 3.18.0 to 3.19.2
Bumps [github.com/newrelic/go-agent/v3](https://github.com/newrelic/go-agent) from 3.18.0 to 3.19.2.
- [Release notes](https://github.com/newrelic/go-agent/releases)
- [Changelog](https://github.com/newrelic/go-agent/blob/master/CHANGELOG.md)
- [Commits](https://github.com/newrelic/go-agent/compare/v3.18.0...v3.19.2)

---
updated-dependencies:
- dependency-name: github.com/newrelic/go-agent/v3
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-10-03 16:25:41 +00:00
Max
32feef3275
Merge pull request #1084 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api/auth/approle-0.3.0
Bump github.com/hashicorp/vault/api/auth/approle from 0.1.1 to 0.3.0
2022-10-03 09:24:31 -07:00
Max
f2628697db
Merge pull request #1082 from smallstep/dependabot/go_modules/github.com/rs/xid-1.4.0
Bump github.com/rs/xid from 1.2.1 to 1.4.0
2022-10-03 09:23:02 -07:00
Max
2ef5c98384
Merge pull request #1067 from smallstep/dependabot/go_modules/github.com/urfave/cli-1.22.10
Bump github.com/urfave/cli from 1.22.4 to 1.22.10
2022-10-03 09:22:06 -07:00
dependabot[bot]
5f0fa57844
Bump cloud.google.com/go/security from 1.7.0 to 1.8.0
Bumps [cloud.google.com/go/security](https://github.com/googleapis/google-cloud-go) from 1.7.0 to 1.8.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases)
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/documentai/CHANGES.md)
- [Commits](https://github.com/googleapis/google-cloud-go/compare/asset/v1.7.0...redis/v1.8.0)

---
updated-dependencies:
- dependency-name: cloud.google.com/go/security
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-10-03 15:25:16 +00:00
dependabot[bot]
211b1c01c0
Bump github.com/hashicorp/vault/api/auth/approle from 0.1.1 to 0.3.0
Bumps [github.com/hashicorp/vault/api/auth/approle](https://github.com/hashicorp/vault) from 0.1.1 to 0.3.0.
- [Release notes](https://github.com/hashicorp/vault/releases)
- [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG.md)
- [Commits](https://github.com/hashicorp/vault/compare/v0.1.1...v0.3.0)

---
updated-dependencies:
- dependency-name: github.com/hashicorp/vault/api/auth/approle
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-10-03 15:25:09 +00:00
dependabot[bot]
510122f026
Bump github.com/rs/xid from 1.2.1 to 1.4.0
Bumps [github.com/rs/xid](https://github.com/rs/xid) from 1.2.1 to 1.4.0.
- [Release notes](https://github.com/rs/xid/releases)
- [Commits](https://github.com/rs/xid/compare/v1.2.1...v1.4.0)

---
updated-dependencies:
- dependency-name: github.com/rs/xid
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-10-03 15:24:49 +00:00
Andrew Reed
9b02b03293
Merge pull request #1079 from smallstep/areed/fix-webhook-type
Fix webhook controller ignoring cert type
2022-10-03 08:24:20 -05:00
Andrew Reed
2c5e41b093
Fix webhook controller ignoring cert type 2022-09-30 17:25:02 -05:00
Max
70abbdfc70
Merge pull request #1068 from smallstep/dependabot/go_modules/go.step.sm/cli-utils-0.7.5
Bump go.step.sm/cli-utils from 0.7.4 to 0.7.5
2022-09-30 12:28:35 -07:00
Max
8139179084
Merge pull request #1069 from smallstep/dependabot/go_modules/github.com/google/go-cmp-0.5.9
Bump github.com/google/go-cmp from 0.5.8 to 0.5.9
2022-09-30 12:18:51 -07:00
Max
af4183df18
Merge pull request #1077 from smallstep/dependabot/go_modules/google.golang.org/api-0.98.0
Bump google.golang.org/api from 0.96.0 to 0.98.0
2022-09-30 12:15:43 -07:00
Max
e5c5b0cb49
Merge pull request #1070 from smallstep/dependabot/go_modules/github.com/slackhq/nebula-1.6.1
Bump github.com/slackhq/nebula from 1.5.2 to 1.6.1
2022-09-30 11:09:44 -07:00
dependabot[bot]
ef75d4f3c6
Bump go.step.sm/cli-utils from 0.7.4 to 0.7.5
Bumps [go.step.sm/cli-utils](https://github.com/smallstep/cli-utils) from 0.7.4 to 0.7.5.
- [Release notes](https://github.com/smallstep/cli-utils/releases)
- [Commits](https://github.com/smallstep/cli-utils/compare/v0.7.4...v0.7.5)

---
updated-dependencies:
- dependency-name: go.step.sm/cli-utils
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-09-30 00:23:15 +00:00
dependabot[bot]
3faa8717b3
Bump google.golang.org/api from 0.96.0 to 0.98.0
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.96.0 to 0.98.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.96.0...v0.98.0)

---
updated-dependencies:
- dependency-name: google.golang.org/api
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-09-30 00:23:08 +00:00
dependabot[bot]
0027f93fb9
Bump github.com/google/go-cmp from 0.5.8 to 0.5.9
Bumps [github.com/google/go-cmp](https://github.com/google/go-cmp) from 0.5.8 to 0.5.9.
- [Release notes](https://github.com/google/go-cmp/releases)
- [Commits](https://github.com/google/go-cmp/compare/v0.5.8...v0.5.9)

---
updated-dependencies:
- dependency-name: github.com/google/go-cmp
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-09-30 00:22:41 +00:00