Release v0.9.0 – parallel notarizations, wildcard support, Ledger Compliance support

We’re more than happy to announce the v0.9.0 release of vcn. The latest news around the Solarwinds hack and the addition of malicious code to software updates (incl. valid code signing) shows again the importance of solid alternatives to digital signatures.

This release adds:

• parallel notarizations for the same account
• wildcard support for files and directories
• timestamp is always returned when authenticating
• support for CodeNotary Ledger Compliance, the high-speed immutable ledger that runs in any cloud or on-premise.

Thanks again to the community for great feedback!

Changelog

[v0.9.0] – 2020-12-08

Bug Fixes

• restore verification with the highest level available when not logged
• fix integration tests and add circleci job for go 1.15
• fix dist release go1.15.6
• fix ledger-compliance-go dependency
• pkg/api: swap signerID position with the hash in the vcn lc key format
• pkg/api: fix artifact status json unmarshall
• pkg/cmd: don’t track untrusted verification
• pkg/cmd/inspect: fix inspect ux, examples and errors
• pkg/cmd/verify: fix empty signerid handling
• pkg/meta: add apikey env var

Changes

• bump sdk version, remove useless package
• bump lc sdk version
• add swagger.json
• bumb version of go-ethereum and smart contracts
• fix inspect full history message
• upgrade go version to 1.15 and sdk
• remove all whitespaces from otp
• pkg/cmd: show status unknown if tamper is detected
• pkg/cmd/serve: handle missing api key error
• pkg/extractor: fix typo
• pkg/extractor/wildcard: remove max notarization limit
• pkg/extractor/wildcard: improve max notarized files number with wildcard

Code Refactoring

• change api in order to make atomic indexing of notarized items in lc
• pkg/extractor: handle array of artifacts instead of a single one in extractor

Features

• vcn accepts a certificate to setup a tls connection
• if no limit or filter are submitted inspect return last 100 items
• add multiple notarizations capability with wildcard
• add wildcard extractor
• add serve LC inspect
• improve inspect result with timestamp for each element
• add verify filter by LC signerID. fix #104
• add vcn LC login. fix #103
• partial parallel notarizations support
• add inspect for ledger compliance
• add otp_empty environment var
• add LC operations for vcn server
• add verify asset on ledger compliance
• add ledger compliance authentication and notarization
• Add otp support. close #87 close #88
• pkg/cmd: add inspect api
• pkg/cmd/inspect: improve inspect in lc
• pkg/cmd/verify: manage verify by hash in lc mode

Downloads

Docker image
https://hub.docker.com/r/codenotary/vcn

Binaries