@@ -13,19 +13,34 @@ All versions prior to 0.9.0 are untracked.
1313* TSA: Changed the Timestamp Authority requests to explicitly use sha256 for message digests.
1414 [ #1373 ] ( https://github.com/sigstore/sigstore-python/pull/1373 )
1515
16- * Fixed the certificate calidity period check for Timestamp Authorities (TSA).
17- Certificates need not have and end date, while still requiring a start date.
16+ * Fixed the certificate validity period check for Timestamp Authorities (TSA).
17+ Certificates need not have an end date, while still requiring a start date.
1818 [ #1368 ] ( https://github.com/sigstore/sigstore-python/pull/1368 )
1919
20- * API: Make Rekor APIs compatible with Rekor v2 by removing trailing slashes
20+ * Made Rekor client more compatible with Rekor v2 by removing trailing slashes
2121 from endpoints ([ #1366 ] ( https://github.com/sigstore/sigstore-python/pull/1366 ) )
2222
2323### Changed
2424
25+ * API:
26+ * ClientTrustConfig now provides methods ` production() ` , ` staging() ` and ` from_tuf() `
27+ to get access to current client configuration (trusted keys & certificates,
28+ URLs and their validity periods). [ #1363 ] ( https://github.com/sigstore/sigstore-python/pull/1363 )
2529* ` --trust-config ` now requires a file with SigningConfig v0.2, and is able to fully
2630 configure the used Sigstore instance [ #1358 ] /(https://github.com/sigstore/sigstore-python/pull/1358 )
27- * By default (when ` --trust-config ` is not used) signing configuration now comes from
28- the TUF repository just like the trust root
31+ * By default (when ` --trust-config ` is not used) the whole trust configuration now
32+ comes from the TUF repository [ #1363 ] ( https://github.com/sigstore/sigstore-python/pull/1363 )
33+
34+ ### Removed
35+ * API:
36+ * ` Issuer.production() ` and ` Issuer.staging() ` have been removed: Use
37+ ` Issuer() ` instead with relevant URL. The current public good production and
38+ staging URLs are available via the ` ClientTrustConfig ` object.
39+ [ #1363 ] ( https://github.com/sigstore/sigstore-python/pull/1363 )
40+ * ` Signingcontext.production() ` and ` Signingcontext.staging() ` have been removed:
41+ Use ` Signingcontext.from_trust_config() ` instead.
42+ [ #1363 ] ( https://github.com/sigstore/sigstore-python/pull/1363 )
43+
2944
3045## [ 3.6.2]
3146
0 commit comments