github-personal/certificates
1
0
Fork 0
mirror of https://github.com/outbackdingo/certificates.git synced 2026-01-27 10:18:34 +00:00
Code Issues Packages Projects Releases Wiki Activity
5,137 Commits 1 Branch 0 Tags
d560e099a8487e237e3cec856a566e37c99637fc
Commit Graph

5137 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
dependabot[bot]
d560e099a8 Bump google.golang.org/api from 0.244.0 to 0.246.0 
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.244.0 to 0.246.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.244.0...v0.246.0)

---
updated-dependencies:
- dependency-name: google.golang.org/api
  dependency-version: 0.246.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-08-11 19:52:41 +00:00
Herman Slatman
59e4583b81 Merge pull request #2354 from smallstep/herman/fix-oidc-upgrade 
Upgrade `github.com/coreos/go-oidc/v3` to `v3.15.0`.
 2025-08-05 13:17:12 +02:00
Herman Slatman
2bb1896db3 Change OIDC signature algorithm to RS256 to match JWT 
In https://github.com/coreos/go-oidc/compare/v3.14.1...v3.15.0, the
JWT signature algorithm verification is moved earlier into the
process, resulting in our existing test failing. The JWT has
algorithm `RS256` set, whereas the verifier had `ES256`. It needs
to have `RS256` to validate the token.
 2025-08-05 13:16:36 +02:00
dependabot[bot]
6a9c8ae237 Bump github.com/coreos/go-oidc/v3 from 3.14.1 to 3.15.0 
Bumps [github.com/coreos/go-oidc/v3](https://github.com/coreos/go-oidc) from 3.14.1 to 3.15.0.
- [Release notes](https://github.com/coreos/go-oidc/releases)
- [Commits](https://github.com/coreos/go-oidc/compare/v3.14.1...v3.15.0)

---
updated-dependencies:
- dependency-name: github.com/coreos/go-oidc/v3
  dependency-version: 3.15.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-08-05 13:16:35 +02:00
step-ci
1eda025ec2 Merge pull request #2351 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.68.0 
Bump go.step.sm/crypto from 0.67.0 to 0.68.0
 2025-08-04 16:32:21 -05:00
dependabot[bot]
4aaf8bd4e9 Bump go.step.sm/crypto from 0.67.0 to 0.68.0 
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto) from 0.67.0 to 0.68.0.
- [Release notes](https://github.com/smallstep/crypto/releases)
- [Commits](https://github.com/smallstep/crypto/compare/v0.67.0...v0.68.0)

---
updated-dependencies:
- dependency-name: go.step.sm/crypto
  dependency-version: 0.68.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-08-04 21:09:24 +00:00
step-ci
4a4bb7dbce Merge pull request #2349 from smallstep/dependabot/go_modules/google.golang.org/api-0.244.0 
Bump google.golang.org/api from 0.243.0 to 0.244.0
 2025-08-04 16:04:07 -05:00
step-ci
dbbcd7485c Merge pull request #2353 from smallstep/dependabot/go_modules/github.com/prometheus/client_golang-1.23.0 
Bump github.com/prometheus/client_golang from 1.22.0 to 1.23.0
 2025-08-04 16:03:04 -05:00
dependabot[bot]
82585145de Bump github.com/prometheus/client_golang from 1.22.0 to 1.23.0 
Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.22.0 to 1.23.0.
- [Release notes](https://github.com/prometheus/client_golang/releases)
- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md)
- [Commits](https://github.com/prometheus/client_golang/compare/v1.22.0...v1.23.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
  dependency-version: 1.23.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-08-04 20:47:04 +00:00
dependabot[bot]
42a6b4bfaf Bump google.golang.org/api from 0.243.0 to 0.244.0 
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.243.0 to 0.244.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.243.0...v0.244.0)

---
updated-dependencies:
- dependency-name: google.golang.org/api
  dependency-version: 0.244.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-08-04 18:59:05 +00:00
step-ci
1b0815bae4 Merge pull request #2346 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.40.1 
Bump github.com/newrelic/go-agent/v3 from 3.39.0 to 3.40.1
 2025-07-28 14:10:18 -05:00
dependabot[bot]
2ae5a8d62b Bump github.com/newrelic/go-agent/v3 from 3.39.0 to 3.40.1 
Bumps [github.com/newrelic/go-agent/v3](https://github.com/newrelic/go-agent) from 3.39.0 to 3.40.1.
- [Release notes](https://github.com/newrelic/go-agent/releases)
- [Changelog](https://github.com/newrelic/go-agent/blob/master/CHANGELOG.md)
- [Commits](https://github.com/newrelic/go-agent/compare/v3.39.0...v3.40.1)

---
updated-dependencies:
- dependency-name: github.com/newrelic/go-agent/v3
  dependency-version: 3.40.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-07-28 18:50:26 +00:00
step-ci
2497a0eaf8 Merge pull request #2345 from smallstep/dependabot/go_modules/github.com/slackhq/nebula-1.9.6 
Bump github.com/slackhq/nebula from 1.9.5 to 1.9.6
 2025-07-28 13:45:04 -05:00
dependabot[bot]
b790eba7fe Bump github.com/slackhq/nebula from 1.9.5 to 1.9.6 
Bumps [github.com/slackhq/nebula](https://github.com/slackhq/nebula) from 1.9.5 to 1.9.6.
- [Release notes](https://github.com/slackhq/nebula/releases)
- [Changelog](https://github.com/slackhq/nebula/blob/v1.9.6/CHANGELOG.md)
- [Commits](https://github.com/slackhq/nebula/compare/v1.9.5...v1.9.6)

---
updated-dependencies:
- dependency-name: github.com/slackhq/nebula
  dependency-version: 1.9.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-07-28 18:32:53 +00:00
step-ci
807b760276 Merge pull request #2347 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.74.2 
Bump google.golang.org/grpc from 1.73.0 to 1.74.2
 2025-07-28 13:30:32 -05:00
dependabot[bot]
2d83772368 Bump google.golang.org/grpc from 1.73.0 to 1.74.2 
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.73.0 to 1.74.2.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.73.0...v1.74.2)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-version: 1.74.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-07-28 17:21:48 +00:00
step-ci
6a12501312 Merge pull request #2340 from smallstep/dependabot/go_modules/google.golang.org/api-0.242.0 
Bump google.golang.org/api from 0.240.0 to 0.242.0
 2025-07-24 22:46:36 -05:00
dependabot[bot]
b291fb074f Bump google.golang.org/api from 0.240.0 to 0.242.0 
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.240.0 to 0.242.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.240.0...v0.242.0)

---
updated-dependencies:
- dependency-name: google.golang.org/api
  dependency-version: 0.242.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-07-24 20:40:51 -07:00
step-ci
0ed581a715 Merge pull request #2337 from smallstep/dependabot/go_modules/github.com/fxamacker/cbor/v2-2.9.0 
Bump github.com/fxamacker/cbor/v2 from 2.8.0 to 2.9.0
 2025-07-24 22:40:02 -05:00
dependabot[bot]
c90d32c78c Bump github.com/fxamacker/cbor/v2 from 2.8.0 to 2.9.0 
Bumps [github.com/fxamacker/cbor/v2](https://github.com/fxamacker/cbor) from 2.8.0 to 2.9.0.
- [Release notes](https://github.com/fxamacker/cbor/releases)
- [Commits](https://github.com/fxamacker/cbor/compare/v2.8.0...v2.9.0)

---
updated-dependencies:
- dependency-name: github.com/fxamacker/cbor/v2
  dependency-version: 2.9.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-07-24 16:58:49 -07:00
step-ci
0807436e67 Merge pull request #2336 from smallstep/dependabot/go_modules/golang.org/x/net-0.42.0 
Bump golang.org/x/net from 0.41.0 to 0.42.0
 2025-07-24 14:46:36 -05:00
dependabot[bot]
9bbf732f23 Bump golang.org/x/net from 0.41.0 to 0.42.0 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.41.0 to 0.42.0.
- [Commits](https://github.com/golang/net/compare/v0.41.0...v0.42.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-version: 0.42.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-07-24 18:37:08 +00:00
step-ci
544197be34 Merge pull request #2335 from smallstep/dependabot/go_modules/cloud.google.com/go/security-1.19.0 
Bump cloud.google.com/go/security from 1.18.5 to 1.19.0
 2025-07-24 13:11:08 -05:00
dependabot[bot]
317acff9eb Bump cloud.google.com/go/security from 1.18.5 to 1.19.0 
Bumps [cloud.google.com/go/security](https://github.com/googleapis/google-cloud-go) from 1.18.5 to 1.19.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases)
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/documentai/CHANGES.md)
- [Commits](https://github.com/googleapis/google-cloud-go/compare/kms/v1.18.5...kms/v1.19.0)

---
updated-dependencies:
- dependency-name: cloud.google.com/go/security
  dependency-version: 1.19.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-07-24 17:29:54 +00:00
smst-jeff
2a51f17a22 Use errgroup to shutdown services concurrently. (#2343) 2025-07-24 10:29:29 -07:00
step-ci
b216b10bd2 Merge pull request #2334 from smallstep/dependabot/go_modules/github.com/googleapis/gax-go/v2-2.15.0 
Bump github.com/googleapis/gax-go/v2 from 2.14.2 to 2.15.0
 2025-07-24 12:27:13 -05:00
dependabot[bot]
52801d2e67 Bump github.com/googleapis/gax-go/v2 from 2.14.2 to 2.15.0 
Bumps [github.com/googleapis/gax-go/v2](https://github.com/googleapis/gax-go) from 2.14.2 to 2.15.0.
- [Release notes](https://github.com/googleapis/gax-go/releases)
- [Commits](https://github.com/googleapis/gax-go/compare/v2.14.2...v2.15.0)

---
updated-dependencies:
- dependency-name: github.com/googleapis/gax-go/v2
  dependency-version: 2.15.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-07-24 10:16:11 -07:00
Mariano Cano
8537aa802f Merge pull request #2338 from smallstep/mariano/shutdown 
Fix process hanging after SIGTERM
 2025-07-16 12:08:16 -07:00
Mariano Cano
503f67dc61 Replace sync.WaitGroup with errgroup 2025-07-16 10:50:08 -07:00
Mariano Cano
a5fd0d0cfc Fix process hanging after SIGTERM 
This commit fixes a problem where step-ca hangs after a shutdown because
errors were sent to a channel without enough capacity.
 2025-07-15 14:37:56 -07:00
Max
2c61c44176 Update changelog (#2332) 
* Update changelog
* Fix a few revive linter issues
 2025-07-13 16:22:20 -05:00
Mariano Cano
c86cf07be9 Merge pull request #2331 from smallstep/mariano/fix-tests 
Fix gcp unit tests
 2025-07-09 15:04:10 -07:00
Mariano Cano
831d005df8 Fix gcp unit tests 
This PR fixes the gcp unit tests and delays the initialization of the
cloud resource manager client.
 2025-07-09 12:20:29 -07:00
Mariano Cano
bc09e46c3c Merge pull request #2133 from ericnorris/feat-gcp-enable-organization-checking 
feat(gcp): enable organization validation
 2025-07-09 11:10:47 -07:00
Max
0d9f0513cf Merge branch 'master' into feat-gcp-enable-organization-checking 2025-07-09 08:49:52 -07:00
Max
197d0d3508 Changelog updates (#2330) 2025-07-08 18:10:37 -07:00
step-ci
2932225055 Merge pull request #2329 from smallstep/dependabot/go_modules/google.golang.org/api-0.240.0 
Bump google.golang.org/api from 0.239.0 to 0.240.0
 2025-07-07 17:24:45 -05:00
Mariano Cano
312d1a2f92 Merge pull request #2325 from smallstep/mariano/httpclient 
Memory improvements
 2025-07-07 11:11:37 -07:00
dependabot[bot]
b1dd5a6ebd Bump google.golang.org/api from 0.239.0 to 0.240.0 
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.239.0 to 0.240.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.239.0...v0.240.0)

---
updated-dependencies:
- dependency-name: google.golang.org/api
  dependency-version: 0.240.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-07-07 17:56:57 +00:00
Mariano Cano
244e610986 Merge pull request #2326 from smallstep/mariano/fix-2323 
Allow to specify audience when generating JWK provisioner tokens
 2025-07-03 11:00:15 -07:00
Mariano Cano
1ae78b803d Make poolhttp thread safe. 2025-07-02 12:46:32 -07:00
Mariano Cano
2b13b82ee3 Apply suggestions from code review 
Co-authored-by: Herman Slatman <hslatman@users.noreply.github.com>
 2025-07-02 10:48:37 -07:00
Mariano Cano
d647ba3e9c Allow to specify audience when generating JWK provisioner tokens 
This commit allows to set custom audiences to generate X.509 and SSH
related tokens. This change is backward compatible with the current
interface.

Fixes @2323
 2025-07-01 18:36:20 -07:00
Mariano Cano
b690e1214d Remove commented code 2025-07-01 15:57:48 -07:00
Mariano Cano
f3c2e94576 Address linter errors 2025-07-01 14:58:57 -07:00
Mariano Cano
d4fd467e8a Memory improvements 
This commit replaces the client in provisioners and webhooks with an
interface. Then it implements the interface using the new poolhttp
package. This package implements the HTTPClient interface but it is
backed by a sync.Pool, this improves memory, allowing the GC to clean
more memory. It also removes the timer in the keystore to avoid
having extra goroutines if a provisioner goes away. This commit avoids
creating the templates func multiple times, reducing some memory in the
heap.
 2025-07-01 13:53:52 -07:00
step-ci
a1067cab46 Merge pull request #2324 from smallstep/dependabot/go_modules/google.golang.org/api-0.239.0 
Bump google.golang.org/api from 0.238.0 to 0.239.0
 2025-07-01 04:42:37 -05:00
dependabot[bot]
8c66606300 Bump google.golang.org/api from 0.238.0 to 0.239.0 
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.238.0 to 0.239.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.238.0...v0.239.0)

---
updated-dependencies:
- dependency-name: google.golang.org/api
  dependency-version: 0.239.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-06-30 18:38:06 +00:00
step-ci
46b1c4c124 Merge pull request #2315 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.67.0 
Bump go.step.sm/crypto from 0.66.0 to 0.67.0
 2025-06-25 04:16:24 -05:00
dependabot[bot]
7fcdbac351 Bump go.step.sm/crypto from 0.66.0 to 0.67.0 
Bumps [go.step.sm/crypto](https://github.com/smallstep/crypto) from 0.66.0 to 0.67.0.
- [Release notes](https://github.com/smallstep/crypto/releases)
- [Commits](https://github.com/smallstep/crypto/compare/v0.66.0...v0.67.0)

---
updated-dependencies:
- dependency-name: go.step.sm/crypto
  dependency-version: 0.67.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-06-25 09:11:51 +00:00