Pulp-container

===================

Bugfixes
--------

- Fixed sync failure due to ignored certs during registry signature extentions API check.
`1552 <https://github.com/pulp/pulp_container/issues/1552>`__


----

===================

Deprecations and Removals
-------------------------

- Removed the optional "kid" parameter stored inside the signatures' payload generated during
docker manifest v2 schema 1 conversion. This change also removes the ``ecdsa`` dependency,
which is vulnerable to Minevra timing attacks.
`1485 <https://github.com/pulp/pulp_container/issues/1485>`__


----

===================

Bugfixes
--------

- Taught the Container Registry to accept docker schema2 sub-manifest types in OCI index.
`1231 <https://github.com/pulp/pulp_container/issues/1231>`__


----

===================

Bugfixes
--------

- Fixed re-sync failures after reclaiming disk space.
`1400 <https://github.com/pulp/pulp_container/issues/1400>`__
- Added ``application/vnd.docker.distribution.manifest.v1+prettyjws`` to the list of accepted
media types retrieved from a remote registry.
`1444 <https://github.com/pulp/pulp_container/issues/1444>`__


----

===================


Bugfixes
--------

- Fixed a security issue that allowed users without sufficient permissions to mount blobs.
`1286 <https://github.com/pulp/pulp_container/issues/1286>`__
- Fixed pulp-to-pulp failing sync with ``406 Not Acceptable``.
`1329 <https://github.com/pulp/pulp_container/issues/1329>`__


----

===================


Bugfixes
--------

- Relaxed oci manifest json validation to allow other layer mediaTypes than oci layer type.
`1227 <https://github.com/pulp/pulp_container/issues/1227>`__
- Ensured downloader during the repair task contains accept headers for the
manifests to download.
`1303 <https://github.com/pulp/pulp_container/issues/1303>`__


----