Workflow

Securesystemslib

Latest version: v1.1.0

Safety actively analyzes 682471 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 5 of 7

0.13.0

Not secure
* Add support for *OpenPGP* EdDSA/ed25519 keys and signatures (188)
bump

0.12.2

Not secure
* Remove unnecessary `python-dateutil==2.8.0` version pinning to not cause
downstream dependency conflicts (192)

0.12.1

Not secure
* Fix stream duplication race conditions in subprocess interface (186)

0.12.0

Not secure
* *backwards incompatible*
* Remove data serialization in `create_signature` and `verify_signature` (162)
* Replace mostly obsolete `TempFile` utility with single helper function (181)
* Remove *TUF*-specific code and comments (165)
* *new features*
* Add support for *pkcs1v15* RSA signature scheme and additional hash algorithms (173, 175)
* Add basic *OpenPGP* support, transferred from [in-toto](https://github.com/in-toto/in-toto) (#174, 176, 185)
* *miscellaneous*
* Fix publishing of code coverage and enhance test configuration (171)
* Make colorama a strict dependency (178)
* Enhance source distribution metadata (168)
* Update downstream Debian metadata (177)

0.11.3

Not secure
* Provide option to normalize line endings (`\r\n` -> `\n`, `\r` -> `\n`) when
calculating the hash of a file (default: do not normalize).
* Update developer dependencies (dev-requirements.txt):
* cryptography 2.2.2 to 2.3.1
* tox 3.0.0 to 3.2.1

0.11.2

Not secure
* No (en|de)cryption of ed25519 key files when given empty password (pr 148).

* Support ed25519 crypto in pure python with default installation (pr 149).

* Update installation instructions to indicate commands needed to install
optional dependencies for RSA and ECDSA support (pr 150).

* Edit setup.py's license classifier to `OSI LIcense :: MIT` (pr 151).

Page 5 of 7

Links

Releases

Has known vulnerabilities

Previous Next

© 2024 Safety CLI Cybersecurity Inc. All Rights Reserved.