v3.3.1

What's Changed

• build: remove pip package manager after installation of needed python… by @annekebr in #1403
• Fix/redundant network calls to notary during auth by @annekebr in #1376
• test: Fix unit test to use mocked responses instead of live ones by @Starkteetje in #1405
• Fix DoS vulnerability by @Starkteetje in #1407
• update: bump the gh-actions-packages group with 3 updates by @dependabot in #1408
• update: bump the pip-packages group with 3 updates by @dependabot in #1402
• Connaisseur version 3.3.1 by @Starkteetje in #1409

Full Changelog: v3.3.0...v3.3.1

---

Connaisseur v3.3.1

Sec

• Prevent redos during delegation validation #1407

Fix

• Add generic timeout for any async operations #1407
• Do not redundantly authenticate calls to notary #1376

Build

• Remove pip package manager after installation of needed python images #1403

Ci

• Add security release annotation if there is a commit with security commit header #1407
• Add new sec commit header #1407

Test

• Fix unit test to use mocked responses instead of live ones #1405
• Add integration test for self hosted notary without auth #1376

Docs

• Fix testing instructions #1376

Update

• Bump the pip-packages group with 3 updates #1402
• Bump the gh-actions-packages group with 3 updates #1408
• Add k8s version 1.28 for integration tests #1376

v3.3.0

What's Changed

• update: bump the gh-actions-packages group with 2 updates by @dependabot in #1343
• update: bump the pip-packages group with 1 update by @dependabot in #1342
• More improvements to integration tests by @Starkteetje in #1344
• Fix integration test failures by @Starkteetje in #1331
• Cosign logging by @Starkteetje in #1347
• Fix RuntimeError by @Starkteetje in #1334
• update: bump the pip-packages group with 1 update by @dependabot in #1345
• update: bump the gh-actions-packages group with 4 updates by @dependabot in #1371
• fix: Allow unset path of delegation by @Starkteetje in #1372
• update: bump the gh-actions-packages group with 2 updates by @dependabot in #1383
• Cosign 2.2.1 by @Starkteetje in #1384
• feat: add functional labels by @xopham in #1321
• update: bump the pip-packages group with 3 updates by @dependabot in #1389
• update: bump the docker-packages group in /docker with 1 update by @dependabot in #1390
• update: bump the gh-actions-packages group with 2 updates by @dependabot in #1391
• Connaisseur v3.3.0 by @Starkteetje in #1392

Full Changelog: v3.2.0...v3.3.0

---

v3.3.0

Feat

• Add functional labels #1321
• Update cosign to 2.2.1 #1384
• Enable cosign debugging at debug log level #1347

Fix

• Correct cosign logging output if manifest_unknown #1384
• Allow unset path of delegation #1372
• Fix initialization of event loop and prevent runtimeerrors #1334

Build

• Update pip version in build container #1344

Ci

• Update cosign installer package #1347

Test

• Improve execution of local integration test #1334
• Correctly mock and actually test with test_update_with_delegation_trust_data #1347
• Remove unused imports #1347
• Use context managing for sessions #1347
• Resolve sporadic integration test failures #1331
• Remove non-functional receiver config in tests #1344
• Improve debug base pod naming #1344

Docs

• Modernize documentation using admonitions and code block titles #1321
• Switch note blocks to mkdocs admonitions #1321
• Add deployment of kubernetes manifests #1321
• Fix deprecated cosign flag in docs #1384

Update

• Bump the gh-actions-packages group with 2 updates #1391
• Bump the docker-packages group in /docker with 1 update #1390
• Bump the pip-packages group with 3 updates #1389
• Bump the pip-packages group with 4 updates #1384
• Bump the gh-actions-packages group with 2 updates #1383
• Bump the gh-actions-packages group with 4 updates #1371
• Bump the pip-packages group with 1 update #1345
• Bump the pip-packages group with 1 update #1342
• Bump the gh-actions-packages group with 2 updates #1343

v3.2.0

What's Changed

• fix: fix regular integration test by @phbelitz in #1309
• feat: explicitly specify containerPort in helm chart by @phbelitz in #1308
• docs: add copy/select code buttons by @xopham in #1302
• test: fix getRoot utility by @xopham in #1295
• docs: fix code blocks in basics by @xopham in #1310
• Feat: Validate ephemeral containers by @Starkteetje in #1311
• update: cosign v2.2.0 by @xopham in #1296
• test: Add message to retry of deployment during integration test by @Starkteetje in #1332
• update: bump the gh-actions-packages group with 4 updates by @dependabot in #1333
• update: bump the pip-packages group with 5 updates by @dependabot in #1338
• Multiple improvements to the integration test setup by @Starkteetje in #1335
• update: bump the gh-actions-packages group with 1 update by @dependabot in #1336
• Connaisseur release 3.2.0 by @Starkteetje in #1340

Full Changelog: v3.1.1...v3.2.0

---

v3.2.0

Feat

• Validate ephemeral containers #1311
• Explicitly specify containerport in helm chart #1308

Fix

• Getroot base image #1295
• Fix regular integration test #1309

Refactor

• Add missing variable brackets #1335

Ci

• Show non-truncated logs on failure #1335

Test

• No uninstall on integration test failure #1335
• Run most integration tests on a single replica #1335
• Add message to retry of deployment during integration test #1332

Docs

• Update unittest recommendation #1311
• Fix code blocks in basics #1310
• Add copy code buttons and linked content tabs #1302

Update

• Bump the gh-actions-packages group with 1 update #1336
• Bump the pip-packages group with 5 updates (#1338) #1338
• Bump the gh-actions-packages group with 4 updates #1333
• Cosign v2.2.0 #1296

v3.1.1

Fixed some automation problem, which hampered release v3.1.0

What's Changed

• update: version bump by @phbelitz in #1300

Full Changelog: v3.1.0...v3.1.1

v3.1.0

⚠️ This release has been fixed by release v3.1.1

What's Changed

• fix: less verbose logging for cosign by @phbelitz in #1138
• Make failures visible via metrics in detection mode by @phbelitz in #1148
• Update/dependencies by @phbelitz in #1162
• update: bump bridgecrewio/checkov-action from 12.2434.0 to 12.2463.0 by @dependabot in #1192
• Update/dependencies by @phbelitz in #1193
• update: update setuptools requirement from ~=68.1.0 to ~=68.1.2 by @dependabot in #1195
• Update/dependencies by @phbelitz in #1214
• update: trivy-action by @phbelitz in #1263
• ci: grouping of dependabot PRs by @phbelitz in #1241
• feat: Add pod securityContext to helm chart by @phbelitz in #1264
• update: update flask requirement from ~=2.3.3 to ~=3.0.0 by @dependabot in #1267
• Update/dependencies by @phbelitz in #1268
• fix: switch to python 3.11 by @phbelitz in #1275
• Update flask_application.py by @phbelitz in #1274
• fix: overloaded requests by @phbelitz in #1280
• fix: skip replica to zero by @phbelitz in #1262
• Update/dependencies by @phbelitz in #1281
• ci: add k8s v1.27 integration test by @xopham in #1283
• refactor: Minimize software footprint of Dockerfiles by @phbelitz in #1282
• update: bump version by @phbelitz in #1286
• Develop by @phbelitz in #1287

thanks to @FalacerSelene @hsudbrock @jacobkoren1 and @b3n3d17

---

v3.1.0

Feat

• Add pod securitycontext to helm chart

Fix

• Skip replica to zero #1262
• Use nest-asyncio #1280
• Potential memory leak fix #1274
• Switch to python 3.11
• Make failures visible via metrics in detection mode (#1148)
• Less verbose logging for cosign

Refactor

• Minimize software footprint of dockerfiles #1282

Ci

• Add k8s v1.27 integration test #1283
• Split log and state display #1280
• Grouping of dependabot prs (#1241)

Update

• Bump version #1286
• Bump bridgecrewio/checkov-action from 12.2519.0 to 12.2526.0 #1281
• Update pylint requirement from ~=2.17.7 to ~=3.0.1 #1281
• Update mkdocs-material requirement from ~=9.4.2 to ~=9.4.4 #1281
• Bump actions/dependency-review-action from 3.0.8 to 3.1.0
• Update setuptools requirement from ~=68.1.2 to ~=68.2.2
• Bump docker/login-action from 2.2.0 to 3.0.0
• Update jsonschema requirement from ~=4.19.0 to ~=4.19.1
• Bump actions/checkout from 4.0.0 to 4.1.0
• Update mkdocs-material requirement from ~=9.2.8 to ~=9.4.2
• Bump github/codeql-action from 2.21.5 to 2.21.9
• Bump bridgecrewio/checkov-action from 12.2486.0 to 12.2519.0
• Update pylint requirement from ~=2.17.5 to ~=2.17.7
• Update flask requirement from ~=2.3.3 to ~=3.0.0
• Trivy-action (#1263)
• Update mkdocs-material requirement from ~=9.1.21 to ~=9.2.8
• Bump actions/checkout from 3.5.3 to 4.0.0
• Bump bridgecrewio/checkov-action from 12.2463.0 to 12.2486.0 #1214
• Bump github/codeql-action from 2.21.4 to 2.21.5 #1214
• Update flask requirement from ~=2.3.2 to ~=2.3.3 #1214
• Update setuptools requirement from ~=68.1.0 to ~=68.1.2 #1214
• Update pylint requirement from ~=2.17.4 to ~=2.17.5 #1193
• Update mkdocs-material requirement from ~=9.1.19 to ~=9.1.21 #1193
• Bump snok/container-retention-policy from 2.1.1 to 2.1.2 #1193
• Update jsonschema requirement from ~=4.18.4 to ~=4.19.0 #1193
• Bump github/codeql-action from 2.21.0 to 2.21.4 #1193
• Bump actions/dependency-review-action from 3.0.6 to 3.0.8 #1193
• Update setuptools requirement from ~=68.0.0 to ~=68.1.0
• Bump bridgecrewio/checkov-action from 12.2434.0 to 12.2463.0
• Bump bridgecrewio/checkov-action from 12.2401.0 to 12.2434.0
• Bump github/codeql-action from 2.20.1 to 2.21.0
• Update aiohttp requirement from ~=3.8.4 to ~=3.8.5
• Update jsonschema requirement from ~=4.17.3 to ~=4.18.4
• Update mkdocs-material requirement from ~=9.1.17 to ~=9.1.19
• Update pytest-asyncio requirement from ~=0.21.0 to ~=0.21.1

Full Changelog: v3.0.0...v3.1.0

v3.0.0

More details on the changes are in our documentation

v3.0.0

Feat

• Add serviceaccount annotations to allow irsa
• Support RSA public keys for Cosign
• Update to Cosign 2.0 and switch to asyncio
• Add upgrade script
• Common ancestor for Kubernetes resource configurations
• Create MS Teams alert template

Fix

• Remove old config of Rekor url
• Helm error when setting auth username and password

Refactor

• Feature flag utility
• Dev logging for dev install
• Changed logging format to JSON
• Allow all commented-out config keys to be uncommented and then be valid yaml
• Consistency in feature enablement
• Split off webhook configuration
• Group application configuration under single key
• Remove debug config key
• Improve naming within alerting configuration
• Add Rekor subkey for Cosign host config key
• Consistent config key naming (except alerting)

Build

• Default to appversion

Ci

• Less verbose values.yaml debug

Test

• Remove legacy k8s tests
• Only run alerting for tests that use it
• Add object descriptions in error case

Docs

• Fix release documentation
• Added migration steps
• Fix announcement link
• Fix scripts link
• Add Connaisseur 3 announcement to docs
• Fix default values
• Consistent no/none representation for default and not required values
• Correct alerting documentation
• Add migration documentation

Update

• Bump ossf/scorecard-action from 2.1.3 to 2.2.0
• Bump bridgecrewio/checkov-action from 12.2393.0 to 12.2401.0
• Update mkdocs-material requirement from ~=9.1.16 to ~=9.1.17
• Bump github/codeql-action from 2.20.0 to 2.20.1
• Bump anchore/sbom-action from 0.14.2 to 0.14.3
• Update setuptools requirement from ~=67.8.0 to ~=68.0.0
• Update mkdocs-material requirement from ~=9.1.15 to ~=9.1.16
• Update pytest-mock requirement from ~=3.10.0 to ~=3.11.1
• Bump bridgecrewio/checkov-action from 12.2382.0 to 12.2393.0
• Bump github/codeql-action from 2.3.6 to 2.20.0
• Bump actions/checkout from 3.5.2 to 3.5.3
• Update requests-mock requirement from ~=1.10.0 to ~=1.11.0
• Bump docker/login-action from 2.1.0 to 2.2.0
• Updating more dependencies

What's Changed

• update: updateding dependencies by @phbelitz in #1087
• feat: create microsoft teams alert template by @antonin-arquey in #1066
• feat: create ms teams alert template by @phbelitz in #1089
• fix: helm error when setting auth username and password by @phbelitz in #1095
• Connaisseur version 3 by @Starkteetje in #985
• update: bump docker/login-action from 2.1.0 to 2.2.0 by @dependabot in #1092
• Update/dependencies by @phbelitz in #1107
• Update/dependencies by @phbelitz in #1119
• feat: support cosign rsa keys by @xopham in #416
• feat: add serviceaccount annotations to allow IRSA by @phbelitz in #1126
• refactor: feature flag utility by @phbelitz in #1002
• docs: add conny 3 announcement to docs by @phbelitz in #1127
• docs: fix scripts link by @phbelitz in #1128
• docs: added migration steps by @phbelitz in #1130
• Docs: Fix release documentation by @Starkteetje in #1131
• Develop by @phbelitz in #1129

New Contributors

• @antonin-arquey made their first contribution in #1066

Full Changelog: v2.8.1...v3.0.0

v2.8.1

What's Changed

• Fix release docs by @Starkteetje in #907
• Ci/new ci 2 by @xopham in #921
• ci: fix codecov upload by @phbelitz in #922
• Implement CI improvements by @xopham in #923
• docs: fix nightly-build badge reference by @xopham in #924
• docs: fix nightly-build badge reference (#924) by @xopham in #925
• ci: fix unpinned actions by @xopham in #926
• update: bump github/codeql-action from 2.2.4 to 2.2.5 by @dependabot in #916
• ci: remove nightly conditionals by @xopham in #928
• update: bump bridgecrewio/checkov-action from 12.2172.0 to 12.2188.0 by @dependabot in #941
• update: bump actions/checkout from 3.1.0 to 3.3.0 by @dependabot in #933
• ci: fix docs deployments by @xopham in #943
• update: bump bridgecrewio/checkov-action from 12.2188.0 to 12.2191.0 by @dependabot in #946
• update: bump bridgecrewio/checkov-action from 12.2191.0 to 12.2204.0 by @dependabot in #953
• update: bump github/codeql-action from 2.2.5 to 2.2.7 by @dependabot in #952
• update: bump actions/checkout from 3.3.0 to 3.4.0 by @dependabot in #951
• ci: merge upgrade test into integration script by @xopham in #927
• ci: test k8s v1.26 by @xopham in #954
• update: bump bridgecrewio/checkov-action from 12.2204.0 to 12.2210.0 by @dependabot in #956
• update: update pytest-asyncio requirement from ~=0.20.3 to ~=0.21.0 by @dependabot in #955
• update: update pylint requirement from ~=2.16.2 to ~=2.17.0 by @dependabot in #938
• update: update setuptools requirement from ~=67.4.0 to ~=67.6.0 by @dependabot in #939
• update: bump prometheus-flask-exporter from 0.22.2 to 0.22.3 by @dependabot in #919
• update: update mkdocs-material requirement from ~=9.0.14 to ~=9.1.3 by @dependabot in #949
• ci/fix/refactor: Check commit messages have identifier and small fixes by @Starkteetje in #957
• update: bump actions/dependency-review-action from 3.0.3 to 3.0.4 by @dependabot in #960
• update: bump anchore/sbom-action from 0.13.3 to 0.13.4 by @dependabot in #961
• update: update pylint requirement from ~=2.17.0 to ~=2.17.1 by @dependabot in #964
• update: bump github/codeql-action from 2.2.7 to 2.2.8 by @dependabot in #966
• Only deploy ConfigMaps and Secrets if needed by @Starkteetje in #958
• Fix typo in test file by @Starkteetje in #962
• update: bump bridgecrewio/checkov-action from 12.2210.0 to 12.2223.0 by @dependabot in #968
• update: bump actions/checkout from 3.4.0 to 3.5.0 by @dependabot in #973
• update: update setuptools requirement from ~=67.6.0 to ~=67.6.1 by @dependabot in #979
• update: bump ossf/scorecard-action from 2.1.2 to 2.1.3 by @dependabot in #980
• update: update pytz requirement from ~=2022.7 to ~=2023.3 by @dependabot in #982
• update: bump anchore/sbom-action from 0.13.4 to 0.14.1 by @dependabot in #987
• update: update pylint requirement from ~=2.17.1 to ~=2.17.2 by @dependabot in #991
• update: updated dependencies by @phbelitz in #1070
• ci: fix release workflow by @phbelitz in #1072
• ci: more release workflow fixes by @phbelitz in #1074

Full Changelog: v2.8.0...v2.8.1

v2.8.0

v2.8.0

Major Scope

The release contains many fixes and minor changes and the first step of a complete rework of the CI 🏗️

For more info, read the docs 📝

---

Changelog

Feat

• Auto unchanged approval #869

Fix

• Cosign output adjusted to new error #899
• Repair script for getting root key #890
• Add timeout to top-level mutate call #873
• Adjust formatting to use {} instead of dict #877
• Black formatting #879
• Ignore secret scanning config rules for trivy config scanner #879

Refactor

• Switched to cached_property #869

Build

• Add virtualenv folder to .dockerignore #873

Ci

• Fix docs deployment #904
• Fix ossf scorecard branch pipeline #904
• Fix trivy permissions #901
• Use ghcr, signatures, sboms, slsa, reusable workflows, ossf scorecard and checkov #622
• Use trivy github action for vuln scan #879
• Fix codeql permissions #867
• Ignore cve-2022-41723 #891

Test

• Test workload readiness #868
• Fix typo #868
• Actually fail if edge case test fails #868
• Remove fixed vulns #862
• Ignore cve-2022-41721 #862
• Fixing expired tests #862

Docs

• Add automatic update approval to nav #903
• Remove freezelist workaround from test guide #873
• Fix config docstrings #873

Update

• Update mkdocs-material requirement from ~=9.0.13 to ~=9.0.14 (#898) #898
• Bump prometheus-flask-exporter from 0.21.0 to 0.22.2 (#897) #897
• Update setuptools requirement from ~=67.3.2 to ~=67.4.0 (#896) #896
• Update mkdocs-material requirement from ~=9.0.12 to ~=9.0.13 (#893) #893
• Update flask requirement from ~=2.2.2 to ~=2.2.3 (#889) #889
• Update setuptools requirement from ~=67.3.1 to ~=67.3.2 (#888) #888
• Update setuptools requirement from ~=67.2.0 to ~=67.3.1 (#886) #886
• Update pylint requirement from ~=2.16.1 to ~=2.16.2 (#885) #885
• Update aiohttp requirement from ~=3.8.3 to ~=3.8.4 (#884) #884
• Update pylint requirement from ~=2.15.10 to ~=2.16.1 #877
• Update setuptools requirement from ~=67.0.0 to ~=67.2.0 (#881) #881
• Update mkdocs-material requirement from ~=9.0.8 to ~=9.0.12 (#882) #882
• Update pytest-subprocess requirement from ~=1.4.2 to ~=1.5.0 #871
• Update mkdocs-material requirement from ~=9.0.6 to ~=9.0.8 #870
• Update setuptools requirement from ~=66.1.1 to ~=67.0.0 #872
• Update setuptools requirement from ~=66.0.0 to ~=66.1.1 #866
• Update mkdocs-material requirement from ~=9.0.5 to ~=9.0.6 (#865) #865
• Update requests requirement from ~=2.28.1 to ~=2.28.2 (#863) #863
• Update mkdocs-material requirement from ~=8.5.8 to ~=9.0.5 (#860) #860
• Update aioresponses requirement from ~=0.7.3 to ~=0.7.4 (#850) #850
• Bump prometheus-flask-exporter from 0.20.3 to 0.21.0 (#849) #849
• Update setuptools requirement from ~=65.6.3 to ~=66.0.0 (#859) #859
• Update pylint requirement from ~=2.15.9 to ~=2.15.10 (#856) #856
• Update cheroot requirement from ~=8.6.0 to ~=9.0.0 (#851) #851

---

What's Changed

• update: update cheroot requirement from ~=8.6.0 to ~=9.0.0 by @dependabot in #851
• update: update pylint requirement from ~=2.15.9 to ~=2.15.10 by @dependabot in #856
• tests: fixing expired tests by @xopham in #862
• update: update setuptools requirement from ~=65.6.3 to ~=66.0.0 by @dependabot in #859
• update: bump prometheus-flask-exporter from 0.20.3 to 0.21.0 by @dependabot in #849
• update: update aioresponses requirement from ~=0.7.3 to ~=0.7.4 by @dependabot in #850
• update: update mkdocs-material requirement from ~=8.5.8 to ~=9.0.5 by @dependabot in #860
• update: update requests requirement from ~=2.28.1 to ~=2.28.2 by @dependabot in #863
• update: update mkdocs-material requirement from ~=9.0.5 to ~=9.0.6 by @dependabot in #865
• update: update setuptools requirement from ~=66.0.0 to ~=66.1.1 by @dependabot in #866
• ci: Fix CodeQL permissions by @Starkteetje in #867
• test: Test workload readiness by @Starkteetje in #868
• feat: auto update approval by @phbelitz in #869
• update: update setuptools requirement from ~=66.1.1 to ~=67.0.0 by @dependabot in #872
• update: update mkdocs-material requirement from ~=9.0.6 to ~=9.0.8 by @dependabot in #870
• update: update pytest-subprocess requirement from ~=1.4.2 to ~=1.5.0 by @dependabot in #871
• fix: ignore secret scanning config rules for trivy config scanner by @xopham in #879
• update: update mkdocs-material requirement from ~=9.0.8 to ~=9.0.12 by @dependabot in #882
• update: update setuptools requirement from ~=67.0.0 to ~=67.2.0 by @dependabot in #881
• update: update pylint requirement from ~=2.15.10 to ~=2.16.1 by @dependabot in #877
• Fix mutate timeout by @Starkteetje in #873
• update: update aiohttp requirement from ~=3.8.3 to ~=3.8.4 by @dependabot in #884
• update: update pylint requirement from ~=2.16.1 to ~=2.16.2 by @dependabot in #885
• update: update setuptools requirement from ~=67.2.0 to ~=67.3.1 by @dependabot in #886
• update: update setuptools requirement from ~=67.3.1 to ~=67.3.2 by @dependabot in #888
• update: update flask requirement from ~=2.2.2 to ~=2.2.3 by @dependabot in #889
• Fix: Repair script for getting root key by @Starkteetje in #890
• Ignore CVE-2022-41723 by @Starkteetje in #891
• update: update mkdocs-material requirement from ~=9.0.12 to ~=9.0.13 by @dependabot in #893
• update: update setuptools requirement from ~=67.3.2 to ~=67.4.0 by @dependabot in #896
• update: bump prometheus-flask-exporter from 0.21.0 to 0.22.2 by @dependabot in #897
• fix: cosign output adjusted to new error by @xopham in #899
• update: update mkdocs-materi...

Version 2.7.0

Feat

• Allow configuration of connaisseur's tls certificate
• Support tags and digest simultaneously

Fix

• Allowlist cve-2022-41717
• Revert frozenlist changes
• Don't clear image tag
• Make logging of image consistent across validators
• Cosign changed error code
• Fixes docker build and trivy scan

Refactor

• Isort for package import

Ci

• Change deprecated set-output to github_output variable
• Acquire sa token
• Make coverage upload optional
• Limit github actions token scope

Test

• Add test to confirm image is logged on validation error

Docs

• Add pip update to fix commands for running tests

Update

• Update jsonschema requirement from ~=4.16.0 to ~=4.17.3
• Update pytz requirement from ~=2022.2 to ~=2022.7
• Update pytest-asyncio requirement from ~=0.19.0 to ~=0.20.3
• Update setuptools requirement from ~=65.5.0 to ~=65.6.3
• Update pylint requirement from ~=2.15.3 to ~=2.15.9
• Update pytest-subprocess requirement from ~=1.4.1 to ~=1.4.2
• Update pytest-mock requirement from ~=3.8.2 to ~=3.10.0
• Update pytest-cov requirement from ~=3.0.0 to ~=4.0.0
• Update setuptools requirement from ~=65.3.0 to ~=65.5.0
• Update mkdocs-material requirement from ~=8.5.3 to ~=8.5.8
• Update cosign to 1.13.1

What's Changed

• ci: Limit Github Actions token scope by @Starkteetje in #790
• Fix/fix issues by @phbelitz in #812
• Log image name consistently by @Starkteetje in #814
• update: update mkdocs-material requirement from ~=8.5.3 to ~=8.5.8 by @dependabot in #813
• update: update setuptools requirement from ~=65.3.0 to ~=65.5.0 by @dependabot in #799
• update: update pytest-cov requirement from ~=3.0.0 to ~=4.0.0 by @dependabot in #793
• update: update pytest-mock requirement from ~=3.8.2 to ~=3.10.0 by @dependabot in #798
• update: update pytest-subprocess requirement from ~=1.4.1 to ~=1.4.2 by @dependabot in #796
• ci: temporarily removed old k8s versions by @phbelitz in #831
• ci: Change deprecated set-output to GITHUB_OUTPUT variable and re-enable legacy k8s tests by @Starkteetje in #832
• Don't clear image tag by @richgerrard in #800
• fix: revert frozenlist changes by @phbelitz in #836
• fix: allowlist CVE-2022-41717 by @phbelitz in #839
• update: update pylint requirement from ~=2.15.3 to ~=2.15.9 by @dependabot in #842
• update: update setuptools requirement from ~=65.5.0 to ~=65.6.3 by @dependabot in #830
• update: update pytest-asyncio requirement from ~=0.19.0 to ~=0.20.3 by @dependabot in #838
• update: update pytz requirement from ~=2022.2 to ~=2022.7 by @dependabot in #841
• update: update jsonschema requirement from ~=4.16.0 to ~=4.17.3 by @dependabot in #834
• fix: handle image references with both a tag and digest present by @chgl in #763
• Feat: Allow configuration of Connaisseur TLS certificate by @Starkteetje in #840
• Develop by @phbelitz in #844

New Contributors

• @richgerrard made their first contribution in #800
• @chgl made their first contribution in #763

Full Changelog: v2.6.4...v2.7.0

Version 2.6.4

Major Scope

just fixes and updates.

Changelog

Fix

• Add timeouts to requests #774

Ci

• Always use ubuntu-latest runners #788
• Add integration tests for k8s 1.25 #786

Test

• Adapt .pylintrc to new version #774

Update

• Update pylint requirement from ~=2.15.2 to ~=2.15.3 #782
• Update aiohttp requirement from ~=3.8.1 to ~=3.8.3 #785
• Update mkdocs-material requirement from ~=8.4.3 to ~=8.5.3 #784
• Bump codecov/codecov-action from 3.1.0 to 3.1.1 #781
• Cosign v1.11.1 to v1.12.1 #787
• Update jsonschema requirement from ~=4.15.0 to ~=4.16.0 #776
• Update setuptools requirement from ~=65.1.0 to ~=65.3.0 #767
• Update pylint requirement from ~=2.14.5 to ~=2.15.2 #774
• Update requests-mock requirement from ~=1.9.3 to ~=1.10.0 #772
• Update jsonschema requirement from ~=4.12.1 to ~=4.15.0 #773
• Update mkdocs-material requirement from ~=8.4.0 to ~=8.4.3 #775
• Cosign v1.11.0 to v1.11.1 #769

What's Changed

• update: cosign v1.11.0 to v1.11.1 by @xopham in #769
• update: update mkdocs-material requirement from ~=8.4.0 to ~=8.4.3 by @dependabot in #775
• update: update jsonschema requirement from ~=4.12.1 to ~=4.15.0 by @dependabot in #773
• update: update requests-mock requirement from ~=1.9.3 to ~=1.10.0 by @dependabot in #772
• update: update pylint requirement from ~=2.14.5 to ~=2.15.2 by @dependabot in #774
• update: update setuptools requirement from ~=65.1.0 to ~=65.3.0 by @dependabot in #767
• update: update jsonschema requirement from ~=4.15.0 to ~=4.16.0 by @dependabot in #776
• update: cosign v1.11.1 to v1.12.1 by @xopham in #787
• ci: add integration tests for k8s 1.25 by @xopham in #786
• update: bump codecov/codecov-action from 3.1.0 to 3.1.1 by @dependabot in #781
• update: update mkdocs-material requirement from ~=8.4.3 to ~=8.5.3 by @dependabot in #784
• update: update aiohttp requirement from ~=3.8.1 to ~=3.8.3 by @dependabot in #785
• update: update pylint requirement from ~=2.15.2 to ~=2.15.3 by @dependabot in #782
• ci: always use ubuntu-latest runners by @xopham in #788
• Release v2.6.4 by @xopham in #789

Full Changelog: v2.6.3...v2.6.4