v1.0.0-rc.1
📘Documentation
Security Reviews
ncc group go-cose Security Assessment
What's Changed
- Documentation cleanup by @qmuntal in #61
- Guard against race conditions in RegisterAlgorithm by @qmuntal in #62
- Use curve modulo instead of field size to calculate ECDSA signature length by @qmuntal in #60
- Fix integer range rendering by @qmuntal in #63
- Update readme with release info by @SteveLasker in #65
- Remove cose.Verify1 and update cose.Sign1 by @qmuntal in #67
- Ensure IV and Partial IV are not both present by @qmuntal in #66
- Correct README to reflect the defork from mozilla/go-cose by @yogeshbdeshpande in #69
- Create Reports folder under go-cose by @yogeshbdeshpande in #70
- Upload NCC Public Report by @kevin-henry-ncc in #77
- Fail-safe check on RSA by @shizhMSFT in #72
- Ensure critical header contains valid labels by @qmuntal in #78
- Error if unprotected header contains crit param by @qmuntal in #81
- Add baseline security process by @SteveLasker in #4
- Improve Sign1Message.Sign1() docs by @qmuntal in #85
- upload coverage to codecov.io by @qmuntal in #84
- Validate generic headers by @qmuntal in #87
- Increase headers type validation coverage by @qmuntal in #89
New Contributors
- @yogeshbdeshpande made their first contribution in #69
- @kevin-henry-ncc made their first contribution in #77
Full Changelog: v1.0.0-alpha.1...v1.0.0-rc.1
Contributors
qmuntal, SteveLasker, and 3 other contributors