v2.2.0

Highlights

• Revocation checks now validate only the CA path relevant to the certificate. An unrelated expired CA in the chain/truststore no longer fails the check (#267).

Changes

• feat: check only the related CA in the chain during revocation (#267)
  • adds Chain.validate_trust_path(); Chain.check_chain() is now deprecated.
• fix: update Let's Encrypt CA used in the examples (#268)

Requirements

• Now requires cryptography >=49,<50 (#269).

What's Changed

• chore(deps-dev): bump ruff from 0.15.12 to 0.15.13 in the dependencies group by @dependabot[bot] in #261
• chore(deps): bump idna from 3.10 to 3.15 by @dependabot[bot] in #262
• fix: new let's encrypt CA in examples by @fulder in #268
• feat: check only related CA in chain by @fulder in #267
• chore(deps): bump actions/checkout from 6.0.2 to 6.0.3 in the dependencies group by @dependabot[bot] in #264
• chore(deps): bump cryptography from 48.0.0 to 48.0.1 by @dependabot[bot] in #266
• chore(deps): bump the dependencies group across 1 directory with 4 updates by @dependabot[bot] in #269
• build: migrate from poetry to uv by @fulder in #270
• chore(deps): bump actions/checkout from 6.0.3 to 7.0.0 in the dependencies group by @dependabot[bot] in #271
• docs: fix mkdocs cross-reference warnings by @fulder in #272

Full Changelog: v2.1.0...v2.2.0