v0.6.1

Changes

• fix: honor literal allowed_hosts in request-time SSRF middleware (#156)

Installation

composer require netresearch/nr-vault

Publication status

• TER: extensions.typo3.org/extension/nr_vault — 0.6.1 verified
• Packagist: packagist.org/packages/netresearch/nr-vault — 0.6.1 verified
• Documentation: docs.typo3.org/p/netresearch/nr-vault/0.6/en-us/ — render verified

Security

All release artifacts are signed with Sigstore keyless signing.

Verify signatures

cosign verify-blob \
  --bundle nr-vault-0.6.1.zip.sigstore.json \
  --certificate-identity-regexp "https://github.com/netresearch/.*" \
  --certificate-oidc-issuer "https://token.actions.githubusercontent.com" \
  nr-vault-0.6.1.zip

Verify checksums

sha256sum -c checksums.txt

Software Bill of Materials (SBOM)

SBOMs are provided in both SPDX and CycloneDX formats for supply chain transparency.