v1.4.7

What's Changed

• build(deps): bump github.com/sylabs/sif/v2 from 2.15.0 to 2.15.1 by @dependabot in #204
• build(deps): bump golang.org/x/sync from 0.5.0 to 0.6.0 by @dependabot in #206
• build(deps): bump github.com/opencontainers/image-spec from 1.1.0-rc5 to 1.1.0-rc.6 by @dependabot in #207
• build(deps): bump github.com/sylabs/sif/v2 from 2.8.3 to 2.15.1 by @dependabot in #209
• build(deps): bump github.com/opencontainers/image-spec from 1.1.0-rc3 to 1.1.0-rc.6 by @dependabot in #212

Full Changelog: v1.4.6...v1.4.7

v1.4.6

What's Changed

• Update github.com/sylabs/sif/v2 by @EmmEff in #182
• Update github.com/sylabs/json-resp by @EmmEff in #184
• Add/improve unit tests by @tfrisch06 in #186
• Remove dynamic error decls by @tfrisch06 in #187
• Update Go dependencies by @EmmEff in #197
• build(deps): bump github.com/sylabs/sif/v2 from 2.14.1 to 2.15.0 by @dependabot in #200
• build(deps): bump golang.org/x/sync from 0.4.0 to 0.5.0 by @dependabot in #202

Full Changelog: v1.4.5...v1.4.6

v1.4.5

What's Changed

• Return ErrUnauthorized by @EmmEff in #164

Full Changelog: v1.4.4...v1.4.5

v1.4.4

What's Changed

• Improved OCI redirect handling by @EmmEff in #165

Full Changelog: v1.4.3...v1.4.4

v1.4.3

What's Changed

• Resolve short named artifact issue by @EmmEff in #163

Full Changelog: v1.4.2...v1.4.3

v1.4.2

Security Fix

This release includes a fix for CVE-2022-23538 - User credentials leaked to third-party service via HTTP redirect.

See GHSA-7p8m-22h4-9pj7 for full details.

What's Changed

• fix: omit credentials for redirected URLs by @EmmEff in GHSA-7p8m-22h4-9pj7

Full Changelog: v1.4.1...v1.4.2

v1.3.5

What's Changed

• CI/CD by @EmmEff in #156
• Ensure authorization is used in HTTP range requests by @EmmEff in #157
• Implement additional unit tests

Full Changelog: v1.3.4...v1.3.5

v1.4.1

What's Changed

• Resolve issue with unauthenticated requests by @EmmEff in #152

Full Changelog: v1.4.0...v1.4.1

v1.3.4

Security Fix

After release, the change in this version was identified as a fix for CVE-2022-23538 - User credentials leaked to third-party service via HTTP redirect.

See GHSA-7p8m-22h4-9pj7 for full details.

What's Changed

• Fix for specific S3 backends by @EmmEff in #154

Full Changelog: v1.3.3...v1.3.4

v1.4.0

What's Changed

• CircleCI updates by @EmmEff in #147
• CircleCI updates by @EmmEff in #148
• build(deps): bump github.com/sylabs/json-resp from 0.8.1 to 0.8.2 by @dependabot in #149
• Support for pulling SIF images directly from OCI registry by @EmmEff in #150
• Support for pushing SIF images directly to OCI registry by @EmmEff in #151

Full Changelog: v1.3.3...v1.4.0