You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This commit was created on GitHub.com and signed with GitHub’s verified signature.
Certificate restrictions in policy. Rules can now emit force_command (the target runs only this command) and source_address (a CIDR allowlist of where the certificate may be used). Both are baked into the certificate by the CA, so they apply on every target server without per-host AuthorizedPrincipalsFile options.
Hardened validation. Key ID templates and certificate principals are now checked against a strict allowlist at policy load time (and again at issuance), rejecting newlines, control characters, and unbounded values that could be injected into sshd logs or the audit trail.
Supply-chain hardening. CI gained govulncheck and a CodeQL workflow, releases emit SLSA build provenance, and vulnerable dependencies were bumped.
Simpler Lambda support. The Lambda-specific code was removed; the binary now runs the ordinary serve HTTP server behind the AWS Lambda Web Adapter.
