Releases: Venafi/vcert-python
Releases · Venafi/vcert-python
Release list
Add support for NGTS
What's Changed
- rebranded vcert python by @angelmoo in #185
- security: CWE-532: Redact sensitive data from debug logs — VC-53770 by @torresashjiancyber in #192
- security: CWE-502: unsafe YAML deserialization — VC-53769 by @torresashjiancyber in #191
- security: CWE-295: TLS verification disabled — VC-53768 by @torresashjiancyber in #190
- fix(deps): add pip-tools lockfile with hash pinning - VC-53681 [Logos] by @ndevarapalli-panw in #199
- Add NGTS (Strata Cloud Manager) support - VC-54745 by @TomaszSwierszczCA in #198
- Update version by @simeoncybr in #202
New Contributors
- @torresashjiancyber made their first contribution in #192
- @ndevarapalli-panw made their first contribution in #199
- @TomaszSwierszczCA made their first contribution in #198
- @simeoncybr made their first contribution in #202
Full Changelog: v0.18.1...v0.19.0
Contributors
angelmoo, torresashjiancyber, and 3 other contributors
Assets 2
Upgraded core dependencies
Upgraded core dependencies to fix vulnerability issues
Adds support for TPP v25.1
What's Changed
- Adds support for TPP v25.1
- Upgrades dependencies
Adds retire functionality to TLSPDC and TLSPC
What's Changed
- Adds retire certificate functionality to TLSPDC and TLSPC. Contributed by @Pmaraveyias
- fix(ruamel): upgrades ruamel version on setup.py to 0.18.5
Contributors
Pmaraveyias
Assets 2
Fixes issue with Entrust CA on VaaS
Fixes an issue whereby requesting a certificate in VaaS to a Certificate Issuing Template that uses Entrust CA throws an error.
Under some conditions Entrust CA may take too long to issue certificate, which causes VaaS to send 201 Created response with no certifcateIds. This is expected behavior and requires the sdk to poll for the certificate request until the status is ISSUED or FAILED
Adds certificateType AUTO to TPP certificate request
- Upgraded ruamel.yaml dependency to 0.18.5
- Added certificateType: AUTO to TPP certificate requests (courtesy of @Pmaraveyias)
Contributors
Pmaraveyias
Assets 2
Upgrade cryptography library to patch security issue
- Fixed #124: Fixed an issue where adding a Certificate Issuing Template to an existing Application failed
- Upgraded cryptography dependency to 40.0.2 to cover a security risk CVE-2023-23931
- Removed orgUnit field from AppDetails, as Venafi as a Service dropped the use of the field
A lot of enhancements!
- Support for contacts/owners when creating a policy on both TPP and VaaS
- Support for legacy PKCS1 format on private keys when requesting a certificate
- Support for SANs: email, IP, URI when creating a policy on VaaS
- Ability to disable Subject fields on VaaS: organizations, org units, localities, states, countries
- Support for EC private keys on VaaS
- Support for Service generated related attributes on VaaS
Dropped support for Python 2
- Dropped for support for Python 2 as it has reached end of life. New baseline is Python 3.6 and higher.
- Added integration with sonarcloud for test coverage.
- Added version history file.
- Added test cases for json/yaml file parsing.
- Minor issues fixed.
Add ability to fill empty request attributes with zone/policy default values
- Added the ability to fill up the empty attributes of the certificate request with the default values of the policy/zone where the certificate is going to be created.
Supported values:organization,organizational units,locality,state,country