v0.0.57

What's Changed

• Auto-generated cli documentation update - 2024-07-18 14:17:31 by @github-actions in #3931
• Allow authenticated users without Minder projects to accept credentials by @evankanderson in #3909
• Rename comment to description in profile's selector message by @jhrozek in #3919
• build(deps): bump mobx from 6.13.0 to 6.13.1 in /docs by @dependabot in #3935
• Add the protobuf message and the selector API by @jhrozek in #3797
• Add from/to filters to minder history list. by @blkt in #3928
• Fix entity id in ListEvaluationHistory RPC. by @blkt in #3933
• Auto-generated cli documentation update - 2024-07-19 10:39:44 by @github-actions in #3937
• Sizes of cursors and pages are integers in REST. by @blkt in #3938
• Remove unnecessary type conversion causing errors. by @blkt in #3939
• Trim quotes when returning selector comments by @jhrozek in #3940
• Add tests to evaluation log entries conversion. by @blkt in #3941
• Use rule instance table in executor by @dmjb in #3899
• Make selectors available in mindev by @jhrozek in #3943
• Add a DB function to delete all selectors for a profile by @jhrozek in #3942
• Expand profile handlers with selector support by @jhrozek in #3944
• build(deps): bump github/codeql-action from 3.25.12 to 3.25.13 by @dependabot in #3945
• Respect the action overrides by @dmjb in #3946
• Default security advisory alerts to Off by @dmjb in #3947
• Ensure role exists before we try to remove the role assignment by @rdimitrov in #3949
• Remove unused function and its tests. by @dmjb in #3951
• Remove even more unused code by @dmjb in #3952
• build(deps): bump github.com/bufbuild/buf from 1.34.0 to 1.35.0 in /tools by @dependabot in #3955
• build(deps): bump docker/setup-buildx-action from 3.4.0 to 3.5.0 by @dependabot in #3960
• build(deps): bump bufbuild/buf-setup-action from 1.34.0 to 1.35.0 by @dependabot in #3959
• build(deps): bump docker/build-push-action from 6.4.1 to 6.5.0 by @dependabot in #3958
• build(deps): bump github.com/docker/cli from 27.0.3+incompatible to 27.1.0+incompatible by @dependabot in #3956
• Remove unused SQL query ListProfilesByProjectID by @dmjb in #3954
• Add evaluation id to ListEvaluationHistory RPC. by @blkt in #3950
• Remove use of entity_profile_rules table by @dmjb in #3905
• Fix ListEvaluationHistory RPC faulty navigation to next page. by @blkt in #3967
• Align sort inversion with pagination direction. by @blkt in #3968
• build(deps): bump github.com/aws/aws-sdk-go from 1.54.19 to 1.55.1 by @dependabot in #3970
• Decouple from/to filtering in history log RPC. by @blkt in #3929
• Log evaluation history by default by @dmjb in #3973
• Add docs for user management and invitations (#3837) by @rdimitrov in #3972
• Enable history log rpc. by @blkt in #3974
• build(deps): bump github.com/docker/cli from 27.1.0+incompatible to 27.1.1+incompatible by @dependabot in #3969
• build(deps): bump github.com/thomaspoignant/go-feature-flag from 1.31.1 to 1.31.2 by @dependabot in #3957
• Update openfga's entity_reconcile and remote_repo_get to require the editor role by @rdimitrov in #3977
• build(deps): bump github.com/aws/aws-sdk-go from 1.55.1 to 1.55.2 by @dependabot in #3981
• build(deps): bump bufbuild/buf-setup-action from 1.35.0 to 1.35.1 by @dependabot in #3982
• build(deps): bump github.com/bufbuild/buf from 1.35.0 to 1.35.1 in /tools by @dependabot in #3985
• build(deps): bump github.com/stacklok/frizbee from 0.0.20 to 0.1.0 by @dependabot in #3984
• Accept filters multiple times in history list. by @blkt in #3979
• Auto-generated cli documentation update - 2024-07-25 09:00:27 by @github-actions in #3986
• Add entity_type column to evaluation_rule_entities by @dmjb in #3980
• build(deps): bump github.com/sigstore/sigstore-go from 0.4.0 to 0.5.1 by @dependabot in #3983
• Auto-generated DB schema update - 2024-07-25 09:17:38 by @github-actions in #3989
• Remove migration_profile_backfill_log table by @dmjb in #3990
• Auto-generated DB schema update - 2024-07-25 09:35:43 by @github-actions in #3991
• Log errors from history service by @dmjb in #3992
• Disambiguate entity type in history log query. by @blkt in #3994
• Add profile ID to latest_evaluation_statuses by @dmjb in #3993
• Auto-generated DB schema update - 2024-07-25 11:51:22 by @github-actions in #3997
• Change selectors.New to not return an error by @jhrozek in #3995
• Add rule_entity_id to rule_evaluations by @dmjb in #3999
• Add PullRequest as available entity for selectors by @jhrozek in #4000
• Auto-generated DB schema update - 2024-07-25 13:55:48 by @github-actions in #4001
• Add history purge command to minder server cli. by @blkt in #3976
• Add more context around repo lookup failures by @dmjb in #4002
• build(deps): bump github.com/aws/aws-sdk-go from 1.55.2 to 1.55.3 by @dependabot in #4006
• build(deps): bump github.com/open-policy-agent/opa from 0.66.0 to 0.67.0 by @dependabot in #4005
• build(deps): bump sigs.k8s.io/release-utils from 0.8.3 to 0.8.4 by @dependabot in #4007
• build(deps): bump github.com/grpc-ecosystem/grpc-gateway/v2 from 2.20.0 to 2.21.0 by @dependabot in #4008
• build(deps): bump github/codeql-action from 3.25.13 to 3.25.14 by @dependabot in #4009
• Return structured errors from the selectors API by @jhrozek in #3998
• Update local Keycloak image to match deployed config by @eleftherias in #4011
• Take selectors into use in executor by @jhrozek in #4004
• Log errors when listing repositories by @dmjb in #4020
• Re-apply #4010 by @evankanderson in #4019
• build(deps): bump github.com/lestrrat-go/jwx/v2 from 2.1.0 to 2.1.1 by @dependabot in #4025
• build(deps): bump github/codeql-action from 3.25.14 to 3.25.15 by @dependabot in #4023
• Add severity to rule in ListEvaluationHistory RPC. by @blkt in #4014
• build(deps): bump github.com/openfga/openfga from 1.5.6 to 1.5.7 by @dependabot in #4024
• build(deps): bump github.com/fergusstrange/embedded-postgres from 1.27.0 to 1.28.0 by @dependabot in #4026
• Surface selector check errors to handlers by @jhrozek in #4021
• Add converter for PR selector by @eleftherias in #4028
• Extend test cases for selectors with multivalued selections by @jhrozek in #4022
• Drop entity_profile_rules table by @dmjb in #3963
• Auto-generated DB schema update - 2024-07-29 12:38:06 by @github-actions in #4030
• Backfill entity_type in evaluation_rule_entities by @dmjb in #3996
• Add GetProfileByName RPC by @JAORMX in #4029
• Backfill latest_evaluation_statuses with profile_id by @dmjb in #4031
• Auto-generated cli documentation update - 2024-07-29 16:19:31 by @github-actions in #4032...

v0.0.56

What's Changed

• Remove deduplication logic in evaluation history by @dmjb in #3893
• Use project as targeting key, propagate message context through entity evaluation by @evankanderson in #3827
• Require entity-type in profile status get to avoid permafail by @puerco in #3868
• build(deps): bump docker/build-push-action from 6.3.0 to 6.4.0 by @dependabot in #3896
• build(deps): bump slsa-framework/slsa-verifier from 2.5.1 to 2.6.0 by @dependabot in #3897
• build(deps): bump anchore/sbom-action from 0.16.1 to 0.17.0 by @dependabot in #3898
• Auto-generated DB schema update - 2024-07-15 18:32:14 by @github-actions in #3894
• Cache RuleTypeEngine instances in Executor by @dmjb in #3741
• Add tests for UpdateRole by @eleftherias in #3902
• Show where roadmap is and how to request a feature by @lukehinds in #3900
• Move ActionOpt types into a subpackage of profiles by @dmjb in #3901
• Use simpler query to determine if rule type is in use by @dmjb in #3903
• Use rule_instances table in CountProfilesByEntityType query by @dmjb in #3904
• Add tests for RemoveRole by @eleftherias in #3907
• build(deps): bump github.com/styrainc/regal from 0.23.1 to 0.24.0 by @dependabot in #3911
• build(deps): bump github.com/google/go-containerregistry from 0.20.0 to 0.20.1 by @dependabot in #3910
• Don't require the provider name when auto-enrolling repositories by @jhrozek in #3906
• Updates the Install Minder Server documentation by @mesembria in #3880
• Don't URL escape the package name when getting versions by @JAORMX in #3915
• Add tests for AssignRole by @eleftherias in #3912
• Upgrade go-github to v63 by @JAORMX in #3916
• Removed option from minder history list. by @blkt in #3917
• Fix potential race condition in rule type engine cache by @dmjb in #3918
• build(deps): bump docker/build-push-action from 6.4.0 to 6.4.1 by @dependabot in #3920
• build(deps): bump styled-components from 6.1.11 to 6.1.12 in /docs by @dependabot in #3921
• build(deps): bump k8s.io/client-go from 0.30.2 to 0.30.3 by @dependabot in #3922
• build(deps): bump github.com/openfga/openfga from 1.5.5 to 1.5.6 by @dependabot in #3924
• Fix typos in documentation by @eleftherias in #3926
• Add support for cursors to minder history list. by @blkt in #3925
• Add format output for role grant and update by @rdimitrov in #3930

New Contributors

• @mesembria made their first contribution in #3880

Full Changelog: v0.0.55...v0.0.56

v0.0.55

What's Changed

• Update openfga entity_reconcile to require the admin role by @rdimitrov in #3818
• build(deps): bump google.golang.org/grpc from 1.64.0 to 1.64.1 in /tools by @dependabot in #3820
• build(deps): bump anchore/sbom-action from 0.16.0 to 0.16.1 by @dependabot in #3821
• build(deps): bump actions/setup-node from 4.0.2 to 4.0.3 by @dependabot in #3822
• build(deps): bump github.com/aws/aws-sdk-go from 1.54.16 to 1.54.17 by @dependabot in #3824
• build(deps): bump github.com/zitadel/oidc/v3 from 3.25.1 to 3.26.0 by @dependabot in #3825
• build(deps): bump github.com/thomaspoignant/go-feature-flag from 1.31.0 to 1.31.1 by @dependabot in #3823
• Fix project creation conflict during user creation by @rdimitrov in #3815
• Regenerate minder authz by @jhrozek in #3828
• GetProfileByProjectAndID includes selectors by @jhrozek in #3833
• Add First and Last name to the user identity object by @rdimitrov in #3832
• Added ListEvaluationHistory RPC implementation. by @blkt in #3784
• Artifact tag matcher: Curb complexity when parsing regexps from user input by @puerco in #3836
• build(deps): bump github.com/aws/aws-sdk-go from 1.54.17 to 1.54.18 by @dependabot in #3845
• build(deps): bump github.com/charmbracelet/lipgloss from 0.11.0 to 0.11.1 by @dependabot in #3844
• build(deps): bump actions/setup-go from 5.0.1 to 5.0.2 by @dependabot in #3841
• Sort the authz roles in ListRoles response by @rdimitrov in #3857
• Extend the db-to-pb profile code to include selectors by @jhrozek in #3854
• Add a flag for informing if sending the email invite was skipped by @rdimitrov in #3859
• Timestamps for evaluation statuses have time zone. by @blkt in #3858
• CheckHealth RPC now logs error when failing. by @blkt in #3860
• Use Version 2 config for sqlc.yaml by @dmjb in #3861
• Fix issues with mapping of TIMESTAMPZ[] postgres type by @dmjb in #3863
• Change ListEvaluationHistory to use default project ID by @dmjb in #3865
• Move messages only used to generate Go structs out of minder.proto by @jhrozek in #3830
• ListHistoryEvaluation filtering fixes. by @blkt in #3866
• build(deps): bump github.com/signalfx/splunk-otel-go/instrumentation/github.com/lib/pq/splunkpq from 1.17.0 to 1.18.0 by @dependabot in #3871
• build(deps): bump github.com/charmbracelet/lipgloss from 0.11.1 to 0.12.0 by @dependabot in #3870
• Add history list subcommand to CLI by @dmjb in #3867
• Auto-generated cli documentation update - 2024-07-12 10:25:04 by @github-actions in #3872
• ListEvaluationHistory now enforces max page size. by @blkt in #3873
• Some prep work for further changes to the executor by @dmjb in #3874
• Set the auto_registration.entities.repository.enabled option to true when calling repo register --all by @jhrozek in #3876
• Replace several internal protobufs with Go structs by @dmjb in #3878
• Wire new Release + SDLC Core Entities by @puerco in #3839
• Print provider config in provider get, if any by @jhrozek in #3881
• Track evaluation times in executor by @dmjb in #3882
• Auto-generated cli documentation update - 2024-07-12 19:24:31 by @github-actions in #3883
• Fix offline token command flags not working by @rdimitrov in #3879
• Auto-generated cli documentation update - 2024-07-15 10:16:24 by @github-actions in #3888
• build(deps): bump github/codeql-action from 3.25.11 to 3.25.12 by @dependabot in #3887
• build(deps): bump github.com/puzpuzpuz/xsync/v3 from 3.3.1 to 3.4.0 by @dependabot in #3886
• build(deps): bump github.com/charmbracelet/lipgloss from 0.12.0 to 0.12.1 by @dependabot in #3885
• build(deps): bump github.com/aws/aws-sdk-go from 1.54.18 to 1.54.19 by @dependabot in #3884
• Revert "Replace several internal protobufs with Go structs (#3878)" by @JAORMX in #3890
• Add Execution ID in the executor's evaluation param logs by @JAORMX in #3889
• Give metric attributes unique names by @dmjb in #3891
• Fix remediation/alert counter by @dmjb in #3892

Full Changelog: v0.0.54...v0.0.55

v0.0.54

What's Changed

• Do not allow removing the last admin role of a project by @rdimitrov in #3715
• Disable the assignRole functionality if User Management is enabled by @rdimitrov in #3714
• Allow a user to remove their own role from a project by @rdimitrov in #3716
• Store alert and remediation history by @dmjb in #3713
• Reuse the previous invite code when updating an invitation by @rdimitrov in #3719
• build(deps): bump docker/build-push-action from 6.1.0 to 6.2.0 by @dependabot in #3729
• docs: switch to npm by @ethomson in #3732
• Update roadmap in documentation by @ethomson in #3733
• Fix npm run serve example in the docs' README by @jhrozek in #3734
• Add database table and methods for profile selectors by @jhrozek in #3731
• Auto-generated DB schema update - 2024-06-27 21:26:09 by @github-actions in #3736
• build(deps): bump github.com/open-policy-agent/opa from 0.65.0 to 0.66.0 by @dependabot in #3737
• Define API structures for evaluation history by @dmjb in #3647
• Split message handling logic out of Executor by @dmjb in #3730
• Deduplicate event handler and executor unit tests by @dmjb in #3740
• Documentation updates by @ethomson in #3738
• Update documentation site to underline hyperlinks in content area by @ethomson in #3742
• build(deps): bump github.com/openfga/cli from 0.5.0 to 0.5.1 in /tools by @dependabot in #3745
• build(deps): bump github/codeql-action from 3.25.10 to 3.25.11 by @dependabot in #3744
• build(deps): bump mobx from 6.12.4 to 6.12.5 in /docs by @dependabot in #3743
• Initial implementation of the invite email sending service by @rdimitrov in #3735
• build(deps): bump github.com/docker/cli from 26.1.4+incompatible to 27.0.3+incompatible by @dependabot in #3754
• build(deps): bump github.com/aws/aws-sdk-go from 1.53.21 to 1.54.12 by @dependabot in #3753
• build(deps): bump redocusaurus from 2.1.0 to 2.1.1 in /docs by @dependabot in #3752
• Add ProjectRoles field to GetUserResponse by @rdimitrov in #3755
• Include the email template in the event message by @rdimitrov in #3756
• Update the terms and privacy URLs in the invite email by @rdimitrov in #3760
• Do not try to fill roles if project has none by @rdimitrov in #3761
• build(deps): bump mobx from 6.12.5 to 6.13.0 in /docs by @dependabot in #3763
• build(deps): bump go.opentelemetry.io/otel/metric from 1.27.0 to 1.28.0 by @dependabot in #3764
• build(deps): bump go.opentelemetry.io/otel from 1.27.0 to 1.28.0 by @dependabot in #3765
• build(deps): bump google.golang.org/grpc from 1.64.0 to 1.65.0 by @dependabot in #3766
• build(deps): bump go.opentelemetry.io/otel/sdk from 1.27.0 to 1.28.0 by @dependabot in #3768
• build(deps): bump go.opentelemetry.io/otel/exporters/stdout/stdouttrace from 1.27.0 to 1.28.0 by @dependabot in #3767
• Use the correct org display name for invitations by @rdimitrov in #3769
• Invite email: color and padding changes by @ethomson in #3771
• Separate jwt functionality into its own package by @eleftherias in #3770
• Show the subject display name along with the ID in minder role by @rdimitrov in #3772
• Updates to the protocol documentation (and its generator) by @ethomson in #3747
• build(deps): bump docker/build-push-action from 6.2.0 to 6.3.0 by @dependabot in #3776
• build(deps): bump go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp from 0.52.0 to 0.53.0 by @dependabot in #3778
• build(deps): bump go.opentelemetry.io/otel/sdk/metric from 1.27.0 to 1.28.0 by @dependabot in #3779
• build(deps): bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc from 0.52.0 to 0.53.0 by @dependabot in #3781
• build(deps): bump github.com/aws/aws-sdk-go from 1.54.12 to 1.54.14 by @dependabot in #3780
• build(deps): bump github.com/thomaspoignant/go-feature-flag from 1.30.0 to 1.31.0 by @dependabot in #3777
• Add unit test for GetInviteDetails by @eleftherias in #3773
• Consider the environment when generating the invite URLs by @rdimitrov in #3783
• Validate the Auth URL by @lukehinds in #3787
• Add the selector message to the protobuf by @jhrozek in #3785
• Fix project display name when listing invitations by @eleftherias in #3788
• Fix project display name when resolving invite by @eleftherias in #3789
• Add unit tests for ListInvitations and ResolveInvitation by @eleftherias in #3790
• build(deps): bump go.opentelemetry.io/otel/exporters/prometheus from 0.49.0 to 0.50.0 by @dependabot in #3793
• build(deps): bump golang.org/x/term from 0.21.0 to 0.22.0 by @dependabot in #3792
• build(deps): bump docker/setup-buildx-action from 3.3.0 to 3.4.0 by @dependabot in #3791
• build(deps): bump golang.org/x/tools from 0.22.0 to 0.23.0 in /tools by @dependabot in #3798
• build(deps): bump golang.org/x/crypto from 0.24.0 to 0.25.0 by @dependabot in #3801
• build(deps): bump github.com/aws/aws-sdk-go from 1.54.14 to 1.54.15 by @dependabot in #3800
• build(deps): bump github.com/puzpuzpuz/xsync/v3 from 3.2.0 to 3.3.1 by @dependabot in #3799
• Extend the Profile List database calls to include selectors by @jhrozek in #3786
• Increase CLI context timeout to 20s by @eleftherias in #3803
• Bump minder to go 1.22.5 by @dmjb in #3804
• build(deps): bump aquasecurity/trivy-action from 0.23.0 to 0.24.0 by @dependabot in #3805
• build(deps): bump sigs.k8s.io/release-utils from 0.8.2 to 0.8.3 by @dependabot in #3807
• build(deps): bump github.com/aws/aws-sdk-go from 1.54.15 to 1.54.16 by @dependabot in #3808
• build(deps): bump github.com/google/go-containerregistry from 0.19.2 to 0.20.0 by @dependabot in #3809
• build(deps): bump github.com/norwoodj/helm-docs from 1.13.1 to 1.14.2 in /tools by @dependabot in #3810
• build(deps): bump github.com/stacklok/trusty-sdk-go from 0.1.0 to 0.1.1 by @dependabot in #3806
• Fix broken documentation links by @eleftherias in #3811
• Update error message when no project is specified by @eleftherias in #3813

Full Changelog: v0.0.53...v0.0.54

v0.0.53

What's Changed

• build(deps): bump mobx from 6.12.3 to 6.12.4 in /docs by @dependabot in #3622
• Reconcile entity registration by @teodor-yanev in #3562
• Upgrade to zitadel/oidc/v3 by @JAORMX in #3627
• Add display name for permission roles and use it in ListRoles by @rdimitrov in #3629
• Create an InviteService by @rdimitrov in #3628
• Decouple Action Engine from Rule Type Engine by @dmjb in #3599
• Take into account hierarchy when dealing with rule types by @JAORMX in #3626
• build(deps): bump github.com/mikefarah/yq/v4 from 4.44.1 to 4.44.2 in /tools by @dependabot in #3631
• build(deps): bump github.com/spf13/cobra from 1.8.0 to 1.8.1 by @dependabot in #3632
• build(deps): bump github.com/google/go-containerregistry from 0.19.1 to 0.19.2 by @dependabot in #3633
• Add UpdateRole rpc and an expired flag to Invitations by @rdimitrov in #3600
• Set evaluation errpr immediately after evaluation by @dmjb in #3635
• Handle nil values from Trusty API by @eleftherias in #3638
• build(deps): bump aquasecurity/trivy-action from 0.22.0 to 0.23.0 by @dependabot in #3640
• build(deps): bump docker/build-push-action from 5.4.0 to 6.0.0 by @dependabot in #3639
• build(deps): bump ko-build/setup-ko from 0.6 to 0.7 by @dependabot in #3641
• build(deps): bump ws from 7.5.9 to 7.5.10 in /docs by @dependabot in #3642
• build(deps): bump github.com/openfga/go-sdk from 0.4.0 to 0.5.0 by @dependabot in #3643
• build(deps): bump github.com/lestrrat-go/jwx/v2 from 2.0.21 to 2.1.0 by @dependabot in #3644
• Various changes to the eval history schema service by @dmjb in #3637
• Auto-generated DB schema update - 2024-06-18 10:19:56 by @github-actions in #3646
• Updating provider config by @jhrozek in #3468
• Fall back to $XDG_CONFIG_PATH/minder/config.yaml when reading configuration by @JAORMX in #3645
• Auto-generated cli documentation update - 2024-06-18 15:18:38 by @github-actions in #3648
• build(deps): bump docker/build-push-action from 6.0.0 to 6.0.1 by @dependabot in #3652
• build(deps): bump peter-evans/create-pull-request from 6.0.5 to 6.1.0 by @dependabot in #3653
• build(deps): bump github.com/stacklok/frizbee from 0.0.19 to 0.0.20 by @dependabot in #3655
• Bump go to v1.22.4 by @eleftherias in #3657
• build(deps): bump github.com/openfga/openfga from 1.5.4 to 1.5.5 by @dependabot in #3654
• Implement RPC endpoint to list child projects by @JAORMX in #3650
• Add name validation for projects by @JAORMX in #3658
• Implement set-project subcommand by @JAORMX in #3656
• Auto-generated cli documentation update - 2024-06-19 14:16:14 by @github-actions in #3660
• Add db queries related to the user_invites table by @rdimitrov in #3662
• Store most recent evaluation time in dedicated column by @dmjb in #3661
• Update make password-login to add an email and attributes by @rdimitrov in #3663
• Auto-generated DB schema update - 2024-06-19 15:56:42 by @github-actions in #3664
• Log evaluation history in new tables by @dmjb in #3659
• Add email and is_accepted to invitation-related proto messages by @rdimitrov in #3665
• Add function for generating user invites by @rdimitrov in #3667
• Implement ListInvitations and ResolveInvitation APIs for UserService by @rdimitrov in #3666
• Implement GetInviteDetails by @rdimitrov in #3668
• Update the auth invite CLI commands by @rdimitrov in #3674
• Update the project role CLI commands to support invitations by @rdimitrov in #3675
• Auto-generated cli documentation update - 2024-06-19 21:49:04 by @github-actions in #3677
• build(deps): bump github.com/openfga/cli from 0.4.1 to 0.5.0 in /tools by @dependabot in #3678
• Update AssignRole, RemoveRole and add new UpdateRole handlers by @rdimitrov in #3672
• Added minder provider update CLI command. by @blkt in #3676
• Auto-generated cli documentation update - 2024-06-20 12:49:24 by @github-actions in #3679
• Provider update should let back end infer the project ID by @jhrozek in #3680
• build(deps): bump github.com/charmbracelet/bubbletea from 0.26.4 to 0.26.5 by @dependabot in #3683
• build(deps): bump docker/build-push-action from 6.0.1 to 6.0.2 by @dependabot in #3684
• Add docs for provider auto-registration by @jhrozek in #3682
• Add an --all flag to the repo-register command by @jhrozek in #3681
• Auto-generated cli documentation update - 2024-06-21 10:35:53 by @github-actions in #3685
• Remove path parameters from RemoveRole by @rdimitrov in #3686
• Use URLEncoding instead of Std for base64 by @rdimitrov in #3687
• build(deps): bump docker/build-push-action from 6.0.2 to 6.1.0 by @dependabot in #3691
• build(deps): bump bufbuild/buf-setup-action from 1.33.0 to 1.34.0 by @dependabot in #3692
• build(deps): bump github.com/bufbuild/buf from 1.33.0 to 1.34.0 in /tools by @dependabot in #3694
• build(deps): bump redocusaurus from 2.0.2 to 2.1.0 in /docs by @dependabot in #3695
• build(deps): bump github.com/puzpuzpuz/xsync/v3 from 3.1.0 to 3.2.0 by @dependabot in #3693
• Define evaluation metrics by @dmjb in #3688
• Proto updates related to user management by @rdimitrov in #3696
• Add helper functions for getting token and mail from context by @rdimitrov in #3697
• Add helper functions for checking/setting invite expiration by @rdimitrov in #3698
• Fix issue with multiple entity IDs by @dmjb in #3699
• Move EngineContext outside of the engine package by @dmjb in #3701
• Make invite command visible by @rdimitrov in #3702
• Auto-generated cli documentation update - 2024-06-24 18:21:37 by @github-actions in #3704
• build(deps): bump github.com/hashicorp/go-retryablehttp from 0.7.5 to 0.7.7 by @dependabot in #3705
• build(deps): bump github.com/charmbracelet/bubbletea from 0.26.5 to 0.26.6 by @dependabot in #3706
• Refactor UpdateRole and add display names to invite-related responses by @rdimitrov in #3689
• Auto-generated cli documentation update - 2024-06-25 10:18:33 by @github-actions in #3707
• Do not allow for users to self-resolve their own invitations by @rdimitrov in #3709
• Do not return the invite code when listing role assignments and set display name defaults by @rdimitrov in #3710
• Start using new eval history table by @dmjb in #3703

Full Changelog: v0.0.52...v0.0.53

v0.0.52

What's Changed

• Trusty: Block on deprecated, expose provenance by @puerco in #3422
• Update Trusty PR evaluator/ruletype documentation by @puerco in #3423
• Add fuzz test for JQ eval by @AdamKorcz in #3445
• Add fuzzer for github event parsers by @AdamKorcz in #3440
• Add fuzz test for diff ingester parser by @AdamKorcz in #3441
• add fuzz test for crypto package by @AdamKorcz in #3442
• add fuzz test for authz package by @AdamKorcz in #3443
• add fuzz test for auth package by @AdamKorcz in #3444
• Add fuzz test for rego evaluator by @AdamKorcz in #3439
• build(deps): bump bufbuild/buf-setup-action from 1.32.1 to 1.32.2 by @dependabot in #3453
• build(deps): bump github.com/bufbuild/buf from 1.32.1 to 1.32.2 in /tools by @dependabot in #3452
• Implement process for migrating keys and algorithms by @dmjb in #3435
• Extend the GitHub App configuration with an autoRegistration object by @jhrozek in #3449
• build(deps): bump github.com/open-feature/go-sdk from 1.11.0 to 1.12.0 by @dependabot in #3457
• Make github webhook easier to extend with new events for auto registration. by @blkt in #3346
• Add Makefile target to generate encryption key by @JAORMX in #3464
• build(deps): bump github.com/charmbracelet/bubbletea from 0.26.3 to 0.26.4 by @dependabot in #3471
• Events of type "repository" now avoid checking hook id. by @blkt in #3463
• Remove algorithm from crypto config by @dmjb in #3467
• Rerun make gen by @dmjb in #3472
• Add cron jobs to helm chart to purge and rotate secrets by @JAORMX in #3460
• Add db host CLI argument to newly included jobs by @JAORMX in #3474
• Auto-generated helm documentation update - 2024-05-31 09:57:21 by @github-actions in #3475
• Auto-generated helm documentation update - 2024-05-31 11:45:36 by @github-actions in #3473
• User minder-config for secret cleanup/rotation jobs by @JAORMX in #3477
• Use minder-config for rotation job by @JAORMX in #3479
• Actually mount key directory in rotation job by @JAORMX in #3480
• Add a workflow that checks if make gen was run by @rdimitrov in #3476
• Log error when unable to fetch credentials by @jhrozek in #3481
• Add extra debug logging for DB connection in minder-server by @dmjb in #3478
• Use fallback key ID when key version is empty by @dmjb in #3482
• build(deps): bump github.com/openfga/go-sdk from 0.3.7 to 0.4.0 by @dependabot in #3469
• Webhook handler always logs contextual information. by @blkt in #3483
• Add API endpoint definitions for Minder invitation flow by @evankanderson in #3450
• Define rule instance table for Minder by @dmjb in #3459
• Auto-generated DB schema update - 2024-05-31 14:56:09 by @github-actions in #3484
• Run make gen by @JAORMX in #3487
• build(deps): bump github/codeql-action from 3.25.6 to 3.25.7 by @dependabot in #3497
• build(deps): bump github.com/go-playground/validator/v10 from 10.20.0 to 10.21.0 by @dependabot in #3496
• build(deps): bump github.com/itchyny/gojq from 0.12.15 to 0.12.16 by @dependabot in #3495
• build(deps): bump github.com/spf13/viper from 1.18.2 to 1.19.0 by @dependabot in #3494
• Adjust the AutoRegistration protobuf message to be more FE friendly by @jhrozek in #3504
• Update protoc and regenerate by @jhrozek in #3505
• Consider project hierarchy in profile evaluation by @JAORMX in #3499
• Bump docusaurus from 3.3.2 to 3.4.0 by @eleftherias in #3507
• Add ContextV2 protobuf structure by @JAORMX in #3506
• build(deps): bump github.com/go-viper/mapstructure/v2 from 2.0.0-alpha.1 to 2.0.0 by @dependabot in #3514
• Validate config before provider creation by @jhrozek in #3513
• build(deps): bump github.com/openfga/openfga from 1.5.3 to 1.5.4 by @dependabot in #3515
• Switch the pinned action support to use the new frizbee version by @rdimitrov in #3465
• Creating providers with config by @jhrozek in #3334
• Recover from panics from the control plane by @JAORMX in #3519
• Move profile and ruletype logic out of engine package by @dmjb in #3520
• build(deps): bump golang.org/x/term from 0.20.0 to 0.21.0 by @dependabot in #3525
• build(deps): bump goreleaser/goreleaser-action from 5.1.0 to 6.0.0 by @dependabot in #3528
• Move auth offline-token to a separate package by @rdimitrov in #3522
• build(deps): bump golang.org/x/crypto from 0.23.0 to 0.24.0 by @dependabot in #3524
• build(deps): bump golang.org/x/oauth2 from 0.20.0 to 0.21.0 by @dependabot in #3526
• build(deps): bump github/codeql-action from 3.25.7 to 3.25.8 by @dependabot in #3527
• build(deps): bump golang.org/x/tools from 0.21.0 to 0.22.0 in /tools by @dependabot in #3529
• build(deps): bump github.com/deepmap/oapi-codegen/v2 from 2.1.0 to 2.2.0 in /tools by @dependabot in #3530
• Add UserManagement feature flag by @rdimitrov in #3532
• Webhook handler now processes installation_repositories events by @blkt in #3447
• Validate provider config when creating the OAuth provider or the GitHub App provider. by @jhrozek in #3535
• Add ClusterfuzzLite by @AdamKorcz in #3521
• Replace unpinned actions with pinned action by @stacklokbot in #3537
• User API: Add missing project display name and description by @puerco in #3451
• Dual write rule instances to new and old tables by @dmjb in #3486
• Change fuzzing test to avoid leaving files around by @dmjb in #3539
• Remove the now-unused CreateGitHubOAuthProvider by @jhrozek in #3540
• Check OpenID audience when validating token. by @evankanderson in #3541
• build(deps): bump google/clusterfuzzlite from 82652fb49e77bc29c35da1167bb286e93c6bcc05 to 884713a6c30a92e5e8544c39945cd7cb630abcd1 by @dependabot in #3545
• Marshall provider config back to JSON from parsed structures to strip extra keys by @jhrozek in #3544
• build(deps): bump github.com/openfga/cli from 0.4.0 to 0.4.1 in /tools by @dependabot in #3547
• Migrate existing rule instances into rule_instances table by @dmjb in #3534
• Add database migration for the user_invites table by @rdimitrov in #3536
• Minder CLI - New commands for auth invite - list, accept code and decline code by @rdimitrov in #3551
• Auto-generated DB schema update - 2024-06-07 09:00:06 by @github-actions in #3553
• build(deps): bump aquasecurity/trivy-action from 0.21.0 to 0.22.0 by @dependabot in #3554
• Removes unneeded Registered field by @ChrisJBurns in #3563
• build(deps): bump github.com/golangci/golangci-lint from 1.59.0 to 1.59.1 in /tools by @dependabot in #3564
• Delete profiles before deleting project by @dmjb in #3561
• Define evaluation history schemas by @dmjb in #3565
• Auto-generated DB schema update - 2024-06-10 11:34:39 by @github-actions in #3566
• build(deps): bump github.com/sigstore/sigstore-go from 0.3.0 to 0.4.0 by @dependabot i...

v0.0.51

What's Changed

• Remove versioner in favor of adding the function to the providers by @JAORMX in #3345
• Improve error handling for GetCredentialStateForProvider by @dmjb in #3373
• Update .goreleaser.yaml to fix a deprecation warning by @rdimitrov in #3375
• Add provider store and provider manager code to create new providers by @jhrozek in #3377
• Enhanced GitHub webhook handler tests. by @blkt in #3370
• build(deps): bump github/codeql-action from 3.25.5 to 3.25.6 by @dependabot in #3383
• build(deps): bump anchore/sbom-action from 0.15.11 to 0.16.0 by @dependabot in #3384
• Add new helm variables for new crypto config by @dmjb in #3378
• Skip alerts if provider does not support it by @JAORMX in #3386
• Add a CreateProvider rpc handler by @jhrozek in #3385
• Add VerifyProviderTokenIdentity to the GitHubProviderService by @jhrozek in #3389
• Pass configuration when enrolling a provider with a token by @jhrozek in #3388
• build(deps): bump bufbuild/buf-setup-action from 1.32.0 to 1.32.1 by @dependabot in #3395
• build(deps): bump github.com/bufbuild/buf from 1.32.0 to 1.32.1 in /tools by @dependabot in #3394
• build(deps): bump github.com/go-critic/go-critic from 0.11.3 to 0.11.4 in /tools by @dependabot in #3393
• build(deps): bump go.opentelemetry.io/otel/sdk/metric from 1.26.0 to 1.27.0 by @dependabot in #3398
• Fix data race in TestProviderManager_CreateFromConfig by @jhrozek in #3402
• build(deps): bump go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp from 0.51.0 to 0.52.0 by @dependabot in #3399
• Switch to AES-256-GCM encryption for secrets by @dmjb in #3356
• Fix erroneous lookup in github webhook handler. by @blkt in #3403
• Simplify crypto config structure by @dmjb in #3404
• build(deps): bump github.com/styrainc/regal from 0.21.3 to 0.22.0 by @dependabot in #3405
• build(deps): bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc from 0.51.0 to 0.52.0 by @dependabot in #3406
• build(deps): bump github.com/signalfx/splunk-otel-go/instrumentation/github.com/lib/pq/splunkpq from 1.16.0 to 1.17.0 by @dependabot in #3407
• build(deps): bump aquasecurity/trivy-action from 0.20.0 to 0.21.0 by @dependabot in #3409
• build(deps): bump go.opentelemetry.io/otel/exporters/stdout/stdouttrace from 1.26.0 to 1.27.0 by @dependabot in #3408
• Trusty: Support blocking PRs through reviews by @puerco in #3392
• Move provider OAuth config under server.Config by @jhrozek in #3410
• build(deps): bump github.com/charmbracelet/lipgloss from 0.10.0 to 0.11.0 by @dependabot in #3415
• build(deps): bump github.com/rs/zerolog from 1.32.0 to 1.33.0 by @dependabot in #3418
• build(deps): bump github.com/goccy/go-json from 0.10.2 to 0.10.3 by @dependabot in #3416
• build(deps): bump go.opentelemetry.io/otel/exporters/prometheus from 0.48.0 to 0.49.0 by @dependabot in #3417
• Further enhancing webhook handler tests. by @blkt in #3414
• Bump go to v1.22.3 by @prezha in #3419
• Fix packer tests by @prezha in #3421
• Fix Makefiles by @prezha in #3420
• build(deps): bump github.com/charmbracelet/bubbletea from 0.26.2 to 0.26.3 by @dependabot in #3424
• build(deps): bump github.com/hashicorp/go-version from 1.6.0 to 1.7.0 by @dependabot in #3425
• build(deps): bump github.com/open-feature/go-sdk-contrib/providers/go-feature-flag from 0.1.36 to 0.1.37 by @dependabot in #3426
• build(deps): bump github.com/golangci/golangci-lint from 1.58.2 to 1.59.0 in /tools by @dependabot in #3428
• Fix reading fallback values for providers, set environment variables by @jhrozek in #3429
• Rename the enroll flag from config to provider-config by @jhrozek in #3431
• Auto-generated cli documentation update - 2024-05-27 11:50:47 by @github-actions in #3432
• Branch Protection: Error out if an empty branch is given by @JAORMX in #3433
• Actually return an error on branch protection get by @JAORMX in #3434
• Branch protection remediation now uses default branch if none provided. by @blkt in #3436

Full Changelog: v0.0.50...v0.0.51

v0.0.50

What's Changed

• Remove dependency-review pipeline by @JAORMX in #3341
• Regenerate minder protobuf gateway by @JAORMX in #3343
• Remove go generate statement from keystore by @JAORMX in #3344
• Use JSONB for encrypted redirect URL by @dmjb in #3347
• Trusty: Refactor alternative classification, add tests by @puerco in #3336
• Reduce code duplication in provider handlers by @jhrozek in #3349
• Add provider configuration to the session store by @jhrozek in #3348
• Allow KeyStore to be configured with multiple keys by @dmjb in #3335
• Auto-generated DB schema update - 2024-05-16 15:06:39 by @github-actions in #3350
• build(deps): bump github.com/bufbuild/buf from 1.31.0 to 1.32.0 in /tools by @dependabot in #3355
• build(deps): bump bufbuild/buf-setup-action from 1.31.0 to 1.32.0 by @dependabot in #3353
• build(deps): bump actions/checkout from 4.1.5 to 4.1.6 by @dependabot in #3354
• Store encrypted values in new DB column. by @dmjb in #3351
• Remove salt field from EncryptedData by @dmjb in #3357
• Github provider: Add support for checks API by @puerco in #3352
• build(deps): bump github.com/golangci/golangci-lint from 1.58.1 to 1.58.2 in /tools by @dependabot in #3366
• Do not post a pr review if no homoglyphs are found by @teodor-yanev in #3364
• Implement AES-256-GCM encryption by @dmjb in #3367
• Handle package not found in package registries by @jhrozek in #3363
• Fix table formatting for found vulnerabilities by @rdimitrov in #3369

Full Changelog: v0.0.49...v0.0.50

v0.0.49

What's Changed

• Do not construct provider when validating user ID by @dmjb in #3221
• small typo fix to CONTRIBUTING.md by @staceypotter in #3264
• Refactor engine code to use specific provider traits in more places by @dmjb in #3262
• Fix crash in 3259, add test by @evankanderson in #3275
• build(deps): bump golangci/golangci-lint-action from 6.0.0 to 6.0.1 by @dependabot in #3280
• build(deps): bump aquasecurity/trivy-action from 0.19.0 to 0.20.0 by @dependabot in #3281
• build(deps): bump github.com/openfga/cli from 0.3.1 to 0.4.0 in /tools by @dependabot in #3279
• build(deps): bump styled-components from 6.1.9 to 6.1.10 in /docs by @dependabot in #3278
• Minder's "repo register" command now checks already registered repos. by @blkt in #3236
• Added utilities to implement multi-select choices by @blkt in #3237
• Remove ProviderBuilder from engine by @dmjb in #3270
• Migrate to go-viper blessed fork of mapstructure by @evankanderson in #3149
• Remove ProviderBuilder by @dmjb in #3282
• build(deps): bump coverallsapp/github-action from 2.2.3 to 2.3.0 by @dependabot in #3290
• build(deps): bump github.com/golangci/golangci-lint from 1.58.0 to 1.58.1 in /tools by @dependabot in #3289
• build(deps): bump sigs.k8s.io/release-utils from 0.8.1 to 0.8.2 by @dependabot in #3285
• build(deps): bump github/codeql-action from 3.25.3 to 3.25.4 by @dependabot in #3291
• build(deps): bump github.com/charmbracelet/bubbletea from 0.25.0 to 0.26.2 by @dependabot in #3288
• build(deps): bump github.com/openfga/go-sdk from 0.3.6 to 0.3.7 by @dependabot in #3287
• build(deps): bump github.com/prometheus/client_golang from 1.19.0 to 1.19.1 by @dependabot in #3297
• Stored procedure responsible for Profile status transitions now covers all cases by @blkt in #3295
• Upgrade to postgres 16.2 in docker-compose file by @JAORMX in #3296
• Decouple crypto engine from encryption algorithm by @dmjb in #3293
• Add OCI providers + DockerHub and GHCR by @JAORMX in #2983
• Resolve test flake in flags_test by @evankanderson in #3305
• build(deps): bump styled-components from 6.1.10 to 6.1.11 in /docs by @dependabot in #3298
• hides CLI profile list label flag by @ChrisJBurns in #3307
• Auto-generated cli documentation update - 2024-05-11 12:35:03 by @github-actions in #3308
• build(deps): bump github.com/mikefarah/yq/v4 from 4.43.1 to 4.44.1 in /tools by @dependabot in #3313
• build(deps): bump github.com/sigstore/protobuf-specs from 0.3.1 to 0.3.2 by @dependabot in #3312
• build(deps): bump github.com/fergusstrange/embedded-postgres from 1.26.0 to 1.27.0 by @dependabot in #3311
• build(deps): bump goreleaser/goreleaser-action from 5.0.0 to 5.1.0 by @dependabot in #3310
• Multi select list is now ordered. by @blkt in #3306
• Implement EncryptedData struct by @dmjb in #3302
• verifier: Get local authenticator struct to return a usable authenticator by @JAORMX in #3318
• Support dockerhub in mindev ruletype test sub-command by @JAORMX in #3319
• verifier: Move registry to authenticator by @JAORMX in #3320
• Add dependency review by @therealnb in #3314
• Replace unpinned actions with pinned action by @stacklokbot in #3321
• build(deps): bump actions/checkout from 4.1.4 to 4.1.5 by @dependabot in #3328
• build(deps): bump github/codeql-action from 3.25.4 to 3.25.5 by @dependabot in #3327
• Make artifacts ingester work with both GitHub and OCI providers by @JAORMX in #3309
• Add new column for new encyrption format by @dmjb in #3331
• Initial KeyStore implementation by @dmjb in #3329
• build(deps): bump google.golang.org/grpc from 1.63.2 to 1.64.0 by @dependabot in #3333
• Auto-generated DB schema update - 2024-05-14 21:46:14 by @github-actions in #3332
• Improve Trusty integration by @puerco in #3277
• build(deps): bump github.com/grpc-ecosystem/grpc-gateway/v2 from 2.19.1 to 2.20.0 in /tools by @dependabot in #3337
• build(deps): bump k8s.io/client-go from 0.30.0 to 0.30.1 by @dependabot in #3338
• build(deps): bump github.com/grpc-ecosystem/grpc-gateway/v2 from 2.19.1 to 2.20.0 by @dependabot in #3340

New Contributors

• @staceypotter made their first contribution in #3264
• @ChrisJBurns made their first contribution in #3307

Full Changelog: v0.0.48...v0.0.49

v0.0.48

What's Changed

• Update index.md by @eryn-muetzel in #3117
• Update README.md by @eryn-muetzel in #3118
• Allow setting log level for mindev ruletype test by @jhrozek in #3119
• build(deps): bump github.com/openfga/openfga from 1.5.1 to 1.5.3 by @dependabot in #3122
• build(deps): bump k8s.io/client-go from 0.29.3 to 0.29.4 by @dependabot in #3121
• Return 500 if Github AppName is empty when enrolling provider by @dmjb in #3124
• build(deps): bump peter-evans/create-pull-request from 6.0.3 to 6.0.4 by @dependabot in #3127
• build(deps): bump github/codeql-action from 3.25.0 to 3.25.1 by @dependabot in #3128
• build(deps): bump k8s.io/apimachinery from 0.29.4 to 0.30.0 by @dependabot in #3126
• Remove GitHub discussions from README by @eleftherias in #3129
• build(deps): bump k8s.io/client-go from 0.29.4 to 0.30.0 by @dependabot in #3125
• Implement CanImplement method for providers by @dmjb in #3115
• Don't use SELECT * when joining profile tables by @jhrozek in #3130
• Make provider class mandatory in DB by @dmjb in #3132
• build(deps): bump github.com/docker/docker from 26.0.0+incompatible to 26.0.2+incompatible in /tools by @dependabot in #3133
• build(deps): bump github.com/docker/docker from 26.0.1+incompatible to 26.0.2+incompatible by @dependabot in #3134
• build(deps): bump github.com/golang-migrate/migrate/v4 from 4.17.0 to 4.17.1 by @dependabot in #3136
• Skip or error when trying to register an archived repository by @rdimitrov in #3135
• Address review comments for labels filtering by @jhrozek in #3137
• Implement ProviderFactory and ProviderClassFactory by @dmjb in #3131
• Use provider ID instead of name when sending events by @dmjb in #3093
• Fix repo deletion by @jhrozek in #3140
• build(deps): bump actions/checkout from 4.1.2 to 4.1.3 by @dependabot in #3141
• Remove provider name from event wrapper by @dmjb in #3139
• Allow full profile updates through the PATCH handler by @jhrozek in #2990
• build(deps): bump github/codeql-action from 3.25.1 to 3.25.2 by @dependabot in #3147
• build(deps): bump slsa-framework/slsa-github-generator from 1.10.0 to 2.0.0 by @dependabot in #3146
• build(deps): bump clsx from 2.1.0 to 2.1.1 in /docs by @dependabot in #3144
• Add reminder service with empty sendReminders logic by @Vyom-Yadav in #2638
• build(deps): bump bufbuild/buf-setup-action from 1.30.1 to 1.31.0 by @dependabot in #3156
• build(deps): bump github.com/styrainc/regal from 0.20.1 to 0.21.0 by @dependabot in #3157
• build(deps): bump github.com/bufbuild/buf from 1.30.1 to 1.31.0 in /tools by @dependabot in #3158
• Use go generate directives for mock generation by @dmjb in #3159
• Bump sigstore-go to v0.3.0 and add local registry for tests by @puerco in #3154
• Bump go base images to go 1.22.2 by @dmjb in #3161
• build(deps): bump go.opentelemetry.io/otel/trace from 1.25.0 to 1.26.0 by @dependabot in #3170
• build(deps): bump golangci/golangci-lint-action from 4.0.0 to 5.0.0 by @dependabot in #3172
• build(deps): bump sigs.k8s.io/release-utils from 0.7.7 to 0.8.1 by @dependabot in #3166
• build(deps): bump actions/checkout from 4.1.3 to 4.1.4 by @dependabot in #3171
• build(deps): bump go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp from 0.50.0 to 0.51.0 by @dependabot in #3169
• Add ProviderManager, make provider deletion generic by @dmjb in #3162
• Read the webhook secret from a file by @jhrozek in #3175
• More descriptive error message when validating secrets with any of the fallback webhooks fails by @jhrozek in #3176
• build(deps): bump react from 18.2.0 to 18.3.0 in /docs by @dependabot in #3179
• build(deps): bump github/codeql-action from 3.25.2 to 3.25.3 by @dependabot in #3185
• build(deps): bump peter-evans/create-pull-request from 6.0.4 to 6.0.5 by @dependabot in #3186
• build(deps): bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc from 0.50.0 to 0.51.0 by @dependabot in #3184
• build(deps): bump go.opentelemetry.io/otel/sdk/metric from 1.25.0 to 1.26.0 by @dependabot in #3182
• build(deps): bump go.opentelemetry.io/otel/exporters/stdout/stdouttrace from 1.25.0 to 1.26.0 by @dependabot in #3183
• build(deps): bump go.opentelemetry.io/otel/exporters/prometheus from 0.47.0 to 0.48.0 by @dependabot in #3181
• Initial implementation of IDP interface and Keycloak implementation by @evankanderson in #3155
• Add Helm configuration for feature flags by @evankanderson in #3188
• build(deps): bump anchore/sbom-action from 0.15.10 to 0.15.11 by @dependabot in #3197
• build(deps): bump react from 18.3.0 to 18.3.1 in /docs by @dependabot in #3195
• build(deps): bump github.com/open-feature/go-sdk-contrib/providers/go-feature-flag from 0.1.35 to 0.1.36 by @dependabot in #3192
• build(deps): bump github.com/styrainc/regal from 0.21.0 to 0.21.3 by @dependabot in #3193
• build(deps): bump github.com/signalfx/splunk-otel-go/instrumentation/github.com/lib/pq/splunkpq from 1.15.0 to 1.16.0 by @dependabot in #3190
• build(deps): bump react-dom from 18.2.0 to 18.3.1 in /docs by @dependabot in #3198
• build(deps): bump github.com/open-policy-agent/opa from 0.63.0 to 0.64.1 by @dependabot in #3191
• Add docs for using feature flags when developing Minder by @evankanderson in #3189
• Use webhook secrets from files by @jhrozek in #3177
• Fix webhook secret file names by @jhrozek in #3201
• Delete docs/docs/how-to/using-minder-with-ghas.md by @meganbruce in #3204
• build(deps): bump github.com/go-playground/validator/v10 from 10.19.0 to 10.20.0 by @dependabot in #3205
• build(deps): bump github.com/openfga/cli from 0.3.0 to 0.3.1 in /tools by @dependabot in #3207
• build(deps): bump golangci/golangci-lint-action from 5.0.0 to 5.1.0 by @dependabot in #3206
• Refactor repo deletion to move db/provider logic behind interface by @dmjb in #3200
• Warn about empty secret and skip the update in the webhook updater tool by @jhrozek in #3208
• Use ProviderManager in webhook handler by @dmjb in #3202
• Implement GitHubClientFactory by @dmjb in #3203
• build(deps): bump google.golang.org/protobuf from 1.33.0 to 1.34.0 in /tools by @dependabot in #3216
• build(deps): bump styled-components from 6.1.8 to 6.1.9 in /docs by @dependabot in #3215
• build(deps): bump github.com/openfga/go-sdk from 0.3.5 to 0.3.6 by @dependabot in #3218
• build(deps): bump google.golang.org/protobuf from 1.33.0 to 1.34.0 by @dependabot in #3217
• Return verified attestation in verification results by @puerco in #3212
• Fix bug handling images with slashes in ref by @puerco in #3211
• Bug: Remove impossible condition by @puerco in #3213
• Don't trim path from builder URI by @puerco in #3214
• Pass RestClientCache as constructor param by @dmjb in #3222
• Remove use of ProviderBuilder by repo handler by @dmjb in #3224
• Make Project Create/Delete a service...