v2.0.19 #1051

lestrrat · 2024-01-09T01:15:31Z

No description provided.

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.14.0 to 0.15.0. - [Commits](golang/crypto@v0.14.0...v0.15.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

* Add jwe.WithCEK * Allow using a static CEK via EncryptStatic * appease linter * Update go.sum * Docs * Update generated options * Add test

* Delete signer instance upon call to jws.UnregisterSigner * Update Changes

* Bump golang.org/x/crypto from 0.15.0 to 0.16.0 Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.15.0 to 0.16.0. - [Commits](golang/crypto@v0.15.0...v0.16.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * Run bazel and tidy --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Daisuke Maki <lestrrat+github@gmail.com>

Bumps [actions/setup-go](https://github.com/actions/setup-go) from 4 to 5. - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](actions/setup-go@v4...v5) --- updated-dependencies: - dependency-name: actions/setup-go dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Bumps [actions/stale](https://github.com/actions/stale) from 8 to 9. - [Release notes](https://github.com/actions/stale/releases) - [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md) - [Commits](actions/stale@v8...v9) --- updated-dependencies: - dependency-name: actions/stale dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* update all dependencies 12/19/2023 * Run gazelle-update-repos --------- Co-authored-by: Nathan Lacey <nlacey@novetta.com>

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2 to 3. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@v2...v3) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Add jws.IsVerificationError * tweak document

* Add tests for empty protected headers * check for sig.protected == nil * Add one more case for missing protected headers in compact form * Update Changes * JWS: Check for sig.protected == nil on non-flattened input --------- Co-authored-by: Fredrik Strupe <fredrik@strupe.net>

codecov · 2024-01-09T01:18:19Z

Codecov Report

Attention: 378 lines in your changes are missing coverage. Please review.

Comparison is base (43ca140) 71.78% compared to head (77caad5) 72.36%.
Report is 161 commits behind head on v2.

Files	Patch %	Lines
jwe/jwe.go	66.46%	38 Missing and 18 partials ⚠️
jwk/cache.go	41.42%	38 Missing and 3 partials ⚠️
jwk/set.go	34.14%	27 Missing ⚠️
jwt/validate.go	81.11%	27 Missing ⚠️
jwk/jwk.go	49.01%	24 Missing and 2 partials ⚠️
jwk/ecdsa.go	54.28%	13 Missing and 3 partials ⚠️
jwk/okp.go	59.45%	12 Missing and 3 partials ⚠️
jwa/compression_gen.go	54.83%	14 Missing ⚠️
jwa/content_encryption_gen.go	60.00%	14 Missing ⚠️
jwa/elliptic_gen.go	61.11%	14 Missing ⚠️
... and 25 more

Additional details and impacted files

@@            Coverage Diff             @@
##               v2    #1051      +/-   ##
==========================================
+ Coverage   71.78%   72.36%   +0.57%     
==========================================
  Files          90       93       +3     
  Lines        9662    13855    +4193     
==========================================
+ Hits         6936    10026    +3090     
- Misses       1928     3014    +1086     
- Partials      798      815      +17

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

dependabot bot and others added 22 commits November 9, 2023 07:32

Run gazelle-update-repos

7430ba2

Add jwe.WithCEK (#1011)

ea2c632

* Add jwe.WithCEK * Allow using a static CEK via EncryptStatic * appease linter * Update go.sum * Docs * Update generated options * Add test

clarify when jwk.Set.RemoveKey can return error (#1015)

52b176a

Remove signer instance upon call to jws.UnregisterSigner (#1017)

ee031a0

* Delete signer instance upon call to jws.UnregisterSigner * Update Changes

Tweak documentation (#1018)

9156743

Merge pull request from GHSA-7f9x-gw85-8grf

64f2a22

Update Changes

dcf2e4f

Appease linter

08bd411

Merge branch 'v2' into develop/v2

4854cdf

fix deps.bzl

d809cc5

Merge #1044 (#1045)

50de553

* update all dependencies 12/19/2023 * Run gazelle-update-repos --------- Co-authored-by: Nathan Lacey <nlacey@novetta.com>

Update go version in go.mod to go1.18, which matches CI (#1046)

44fe814

Add jws.IsVerificationError (#1049)

ea70886

* Add jws.IsVerificationError * tweak document

Update Changes

a8a7819

Merge remote-tracking branch 'origin/v2' into develop/v2

034e855

fix typo

77caad5

lestrrat merged commit d69a721 into v2 Jan 9, 2024
33 checks passed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

v2.0.19 #1051

v2.0.19 #1051

lestrrat commented Jan 9, 2024

codecov bot commented Jan 9, 2024

v2.0.19 #1051

v2.0.19 #1051

Conversation

lestrrat commented Jan 9, 2024

codecov bot commented Jan 9, 2024

Codecov Report