Skip to content

v0.6.0

Pre-release
Pre-release

Choose a tag to compare

View all tags
@v0lkan v0lkan released this 01 Oct 17:32
· 26 commits to main since this release
v0.6.0
This tag was signed with the committer’s verified signature.
v0lkan Volkan Özçelik
GPG key ID: FDA6FFBBC9465A7F
Verified
Learn about vigilant mode.
fa5362a
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

SPIKE Logo

This was a security release where the main focus was hardening SPIKE SDK mTLS
implementation. In addition, we created a configurable SPIKE backing store
directory to enable future HA development.

The code is stable; however, we are marking it as a "prerelease" because there is still
upstream Helm Charts work to be completed to smoothly enable SPIKE Bootstrap
on Kubernetes clusters.

Added

  • Added SPIKE_TRUST_ROOT_BOOTSTRAP to enable SPIKE Bootstrap to be used
    in different trust boundaries.
  • Added SPIKE_NEXUS_DATA_DIR to enable setting up custom data directories for
    SPIKE Nexus backing store.
  • Added convenience methods to the SPIKE Go SDK.

Changed

  • Improvements to the SPIKE Go SDK.
  • Stricter SPIFFE ID validation. SPIKE SDK now ensures that the API client
    only talks to SPIKE Nexus as the server.

Fixed

  • Minor bug fixes.
  • Fixed flaky unit tests.

Security

  • SPIKE Go SDK clients are hardened to only talk to SPIKE Nexus as the
    server during mTLS.

Below are the generated release notes of every commit since the last release cut:

What's Changed

  • Configurable data directory for SPIKE Nexus backing store by @v0lkan in #232

Full Changelog: v0.5.1...v0.6.0

Contributors

v0lkan
Assets 26
Loading