v1.2.2

What's New

• setup action now installs Notation CLI v1.3.1 by default.
• Upgraded dependencies.

What's Changed

• chore(deps): bump @types/node from 22.10.1 to 22.10.7 by @dependabot in #100
• chore(deps): bump @types/node from 22.10.7 to 22.13.0 by @dependabot in #104
• chore(deps): bump @actions/tool-cache from 2.0.1 to 2.0.2 by @dependabot in #99
• chore(deps): bump undici from 5.28.4 to 5.28.5 by @dependabot in #101
• chore(deps): bump @types/node from 22.13.0 to 22.13.5 by @dependabot in #107
• bump: upgraded to use Notation v1.3.1 by default by @Two-Hearts in #108

Full Changelog: v1.2.1...v1.2.2

v1.2.1

What's New

• setup action now installs Notation CLI v1.3.0 by default.
• When using Notation CLI v1.3.0, verify action now supports CRL revocation check. It is automatically enabled when applicable during verification. See more details here.

What's Changed

• docs: updated README.md based on v1.2.0 by @Two-Hearts in #85
• chore(deps): bump @actions/core from 1.10.1 to 1.11.1 by @dependabot in #87
• chore(deps): bump @types/node from 22.7.0 to 22.8.7 by @dependabot in #91
• chore(deps): bump @types/node from 22.8.7 to 22.9.0 by @dependabot in #92
• bump: upgraded typescript version and re-build by @Two-Hearts in #94
• chore(deps): bump @types/node from 22.9.0 to 22.10.0 by @dependabot in #95
• chore(deps): bump @types/node from 22.10.0 to 22.10.1 by @dependabot in #96
• bump: upgrade to Notation v1.3.0 by @Two-Hearts in #102

Full Changelog: v1.2.0...v1.2.1

v1.2.0

What's New

• setup action now installs Notation CLI v1.2.0 by default.
• Introduced new fields timestamp_url and timestamp_root_cert in sign action for Notation CLI v1.2.0 or later. Users now able to sign with RFC 3161 compliant timestamping.
• The verify action now supports timestamping countersignature verification for Notation CLI v1.2.0 or later. See Trust Policy and Trust Store for more details.
• Introduced new field force_referrers_tag in sign action for Notation CLI v1.2.0 or later. Users who want to use the Referrers API supported by OCI 1.1 need to set force_referrers_tag to false during signing.
• For Notation CLI v1.2.0 or later, the verify action now always uses the Referrers API, if not supported, automatically fallback to the Referrers Tag Schema.

Deprecation

• Field allow_referrers_api for sign action is deprecated for Notation CLI v1.2.0 or later. Use force_referrers_tag instead.
• Field allow_referrers_api for verify action is deprecated for Notation CLI v1.2.0 or later.

What's Changed

• docs: updated README.md by @Two-Hearts in #68
• chore(deps): bump @types/node from 20.14.10 to 22.0.0 by @dependabot in #70
• chore(deps): bump @types/node from 22.0.0 to 22.5.4 by @dependabot in #78
• bump: upgrade default Notation to v1.2.0 by @Two-Hearts in #79
• feat: timestamping by @Two-Hearts in #80
• feat: OCI 1.1 support by @Two-Hearts in #82

Full Changelog: v1.1.0...v1.2.0

v1.1.0

What's New

1. Support of sign/verify multiple images in one workflow step.
2. For Notation with version greater or equal to v1.1.0, use notation plugin install command to set up plugins.

What's Changed

• Org maintainers update by @toddysm in #57
• bump: Upgrade to use Notation v1.1.1 by @Two-Hearts in #60
• feat: supporting Sign/Verify with multiple images by @Two-Hearts in #62
• feat: use notation plugin install by @Two-Hearts in #63
• chore: added dependabot.yml by @Two-Hearts in #64
• chore(deps): bump actions/checkout from 3 to 4 by @dependabot in #66
• chore(deps): bump docker/build-push-action from 4 to 6 by @dependabot in #65
• chore(deps): bump @types/node from 20.14.9 to 20.14.10 by @dependabot in #67

New Contributors

• @dependabot made their first contribution in #66

Full Changelog: v1...v1.1.0

v1.0.1

What's Changed

• chore: update README for proper rendering notes by @Two-Hearts in #43
• chore: updated GitHub Action name and description in marketplace by @Two-Hearts in #44
• chore: update GitHub Actions naming and description in marketplace by @Two-Hearts in #45
• fix: rebuild dist/ with latest tsc by @Two-Hearts in #51
• Updated the CODEOWNERS and MAINTAINERS files by @toddysm in #49
• bump: bump up Notation CLI to v1.1.0 by @Two-Hearts in #53

Full Changelog: v1.0.0...v1.0.1

v1.0.0

What's Changed

• Added CODEOWNERS and MAINTAINERS files by @toddysm in #1
• feat: Add Github Action for notation sign with plugin by @Two-Hearts in #3
• feat: Add Github Action for notation verify by @Two-Hearts in #4
• feat: Add Github Action for notation setup by @duffney in #5
• update: refactored notation-action repo by @Two-Hearts in #14
• chore: added license to the repo by @Two-Hearts in #21
• fix: fixed sign with multiple plugin_config by @Two-Hearts in #24
• feat: added allow_referrers_api inputs by @Two-Hearts in #26
• ci: added check-dist github workflow to detect dist/ differences on push/pull_request by @Two-Hearts in #28
• chore: added comment by @Two-Hearts in #29
• fix: fixed sign logic by @Two-Hearts in #30
• fix: fixed logic after e2e testing by @Two-Hearts in #31
• e2e: added e2e workflows by @Two-Hearts in #35
• fix: fixed trust store logic in verify by @Two-Hearts in #38
• fix: updated Notation version to 1.0.0 by @Two-Hearts in #37
• chore: clean up the codes by @Two-Hearts in #39
• fix: use committed node modules by @qweeah in #40
• doc: update README to align with the new brand name by @FeynmanZhou in #18
• fix: publish release and to GitHub Actions Marketplace by @Two-Hearts in #41
• doc: refine README by @FeynmanZhou in #42

New Contributors

• @toddysm made their first contribution in #1
• @Two-Hearts made their first contribution in #3
• @duffney made their first contribution in #5
• @FeynmanZhou made their first contribution in #18
• @qweeah made their first contribution in #40

Full Changelog: https://github.com/notaryproject/notation-action/commits/v1.0.0