Skip to content

sayanarijit/cottage

v0.3.0 Breaking

This release includes 4 breaking changes for platform teams planning a safe upgrade.

Published 29d Secrets & Credentials
✓ No known CVEs patched
Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Topics

cli encryption-decryption git gitops secrets-management

Affected surfaces

auth rbac

Summary

AI summary

Removed passphrase support and introduced basic access control with breaking changes.

Full changelog

Added

  • feat(code) remove support for passphrase
  • (acl) [breaking] add basic access control

Fixed

  • (hash) [breaking] match recipient checksum using only the valid part
  • (enc) [breaking] verify intended recipients match metadata

Other

  • (diff) fix diff tests
  • (code) minor cleanups
  • (deps) remove rpassword
  • (acl) Document the access control feature in readme

Breaking Changes

  • Removed support for passphrase in code configuration.
  • [acl] Added basic access control (new feature with breaking implications).
  • [hash] Match recipient checksum using only the valid part – behavior change.
  • [enc] Verify intended recipients match metadata – behavior change.
View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track sayanarijit/cottage

Get notified when new releases ship.

Sign up free

About sayanarijit/cottage

All releases →

Related context

Beta — feedback welcome: [email protected]