Skip to content

v0.12.0

Choose a tag to compare

View all tags
@CybotTM CybotTM released this 29 Nov 10:08
· 882 commits to main since this release
v0.12.0
8528bca
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

[0.12.0] - 2025-11-29

Bug Fixes

  • ci: Add checkout step to release notes job for gh CLI context (#283)
  • ci: Add checkout step to release notes job for gh CLI context
  • ci: Add checkout step to checksums job for gh CLI context (#282)
  • ci: Add checkout step to checksums job for gh CLI context
  • ci: Add checkout step to SBOM job for gh CLI context (#281)
  • ci: Add checkout step to SBOM job for gh CLI context
  • release: Use correct SLSA builder template syntax (#280)
  • release: Use correct SLSA builder template syntax
  • release: Use SLSA builder env var syntax instead of goreleaser templates (#279)
  • release: Use SLSA builder env var syntax instead of goreleaser templates
  • ci: Address shellcheck warnings for word splitting
  • ci: Skip gitleaks on merge_group events (#277)
  • ci: Skip gitleaks on merge_group events
  • ci: Use correct commit SHA for codeql-action v3.28.19 (#276)
  • ci: Use correct commit SHA for codeql-action v3.28.19
  • ci: Use correct commit SHA for scorecard-action v2.4.0 (#275)
  • ci: Use correct commit SHA for scorecard-action v2.4.0
  • security: Implement OpenSSF Scorecard improvements (#274)
  • ci: Add merge_group trigger for merge queue support
  • security: Implement OpenSSF Scorecard improvements
  • ci: Replace deprecated deny-licenses with allow-licenses whitelist
  • ci: Add gitleaks license and address review comments
  • workflows: Complete cosign verification instructions and cleanup
  • release: Remove workflow_dispatch and fix heredoc YAML parsing
  • release: Replace heredoc with echo to fix YAML parsing
  • ci: Ensure Trivy SARIF upload on vulnerability detection
  • ci: Address ultrathink code review findings
  • ci: Address code review security and quality issues
  • release: Clarify workflow_dispatch limitations and fix heredoc indentation
  • Resolve golangci-lint issues and Copilot review comments (#271)
  • Resolve golangci-lint issues and Copilot review comments

Documentation

  • Add security policy with vulnerability reporting guidelines

New Features

  • security: Add Go fuzz testing and improve OpenSSF Scorecard docs (#278)
  • security: Add Go fuzz testing and improve OpenSSF Scorecard docs
  • security: Implement SLSA Level 3 supply chain security and enterprise compliance (#273)
  • release: Implement SLSA Level 3 provenance for binary releases
  • ci: Add enterprise security features for supply chain compliance
  • Add SBOM generation for Go binaries via GoReleaser (#272)
  • Add SBOM generation for Go binaries via GoReleaser
  • Migrate from go-dockerclient to official Docker SDK (#270)
  • cli: Add DockerProvider support to DockerHandler
  • core: Add DockerProvider interface and provider implementations
  • core: Implement Docker SDK adapter for official Docker client
  • docker: Add domain models, ports, and mock adapter for SDK migration

Refactoring

  • test: Use existing test.Logger instead of custom nullLogger
  • ci: Apply code review enhancements

Testing

  • Add benchmark tests for Docker SDK adapter performance
  • Comprehensive test coverage improvements (60.7% → 72.3%)

Included in this release

View all PRs and Issues included in this release

Assets 29
Loading