v1.2.0

What's New

• setup action now installs Notation CLI v1.2.0 by default.
• Introduced new fields timestamp_url and timestamp_root_cert in sign action for Notation CLI v1.2.0 or later. Users now able to sign with RFC 3161 compliant timestamping.
• The verify action now supports timestamping countersignature verification for Notation CLI v1.2.0 or later. See Trust Policy and Trust Store for more details.
• Introduced new field force_referrers_tag in sign action for Notation CLI v1.2.0 or later. Users who want to use the Referrers API supported by OCI 1.1 need to set force_referrers_tag to false during signing.
• For Notation CLI v1.2.0 or later, the verify action now always uses the Referrers API, if not supported, automatically fallback to the Referrers Tag Schema.

Deprecation

• Field allow_referrers_api for sign action is deprecated for Notation CLI v1.2.0 or later. Use force_referrers_tag instead.
• Field allow_referrers_api for verify action is deprecated for Notation CLI v1.2.0 or later.

What's Changed

• docs: updated README.md by @Two-Hearts in #68
• chore(deps): bump @types/node from 20.14.10 to 22.0.0 by @dependabot in #70
• chore(deps): bump @types/node from 22.0.0 to 22.5.4 by @dependabot in #78
• bump: upgrade default Notation to v1.2.0 by @Two-Hearts in #79
• feat: timestamping by @Two-Hearts in #80
• feat: OCI 1.1 support by @Two-Hearts in #82

Full Changelog: v1.1.0...v1.2.0