v0.3.0
π Chains v0.3.0 π
Docs @ v0.3.0
Examples @ v0.3.0
Installation one-liner
kubectl apply -f https://storage.googleapis.com/tekton-releases/chains/previous/v0.3.0/release.yaml
Changes
Features
- Add IMAGES results type, to be used for releases (#153)
- Add support for uploading certs to rekor (#148)
- Fulcio signing in Chains (#147)
- Bump sigstore deps to pick up AWS KMS support. (#142)
- Add support for hinting multiple images as results (#129)
- Container native provenance predicate (#128)
- Support AWS DynamoDB in docdb package (#125)
- Transparency log uploads in chains! (#121)
- Support the ITE-5 signing spec (#109)
Deprecation Notices
- Remove PGP signing! (#144)
Fixes
- Fix docdb behavior on retries (#126)
- Fix format directive. (#160)
- Fix auth bug for pushing images in release pipeline (#170)
- Store cert/chain when wrapping payloads (#169)
- Don't require prefix when image hinting (#134)
Misc
- Change the ServiceAccount identity used for OCI storage backend. (#163)
- Update in-toto to pick up the new SSL/DSSE spec. (#127)
Docs
- Add some details to the roadmap (#136)
Thanks
Thanks to these contributors who contributed to v0.3.0!
- β€οΈ @bobcatfish
- β€οΈ @dlorenc
- β€οΈ @mattmoor
- β€οΈ @priyawadhwa
- β€οΈ @trevrosen
Extra shout-out for awesome release notes:
- π @bobcatfish
- π @dlorenc
- π @mattmoor
- π @priyawadhwa
- π @trevrosen