The Wayback Machine - https://web.archive.org/web/20200916223337/https://github.com/mozilla/sops/releases
Skip to content

@mozcloudsec mozcloudsec released this Sep 14, 2020

Features:

  • Add support for --unencrypted-regex (#715)

Changes:

  • Use keys.openpgp.org instead of gpg.mozilla.org (#732)
  • Upgrade AWS SDK version (#714)
  • Support --input-type for exec-file (#699)

Bug fixes:

  • Fixes broken Vault tests (#731)
  • Revert "Add standard newline/quoting behavior to dotenv store" (#706)
Assets 7

@mozcloudsec mozcloudsec released this Jul 15, 2020

Features:

  • Support for encrypting data through the use of Hashicorp Vault (#655)
  • sops publish now supports --recursive flag for publishing all files in a directory (#602)
  • sops publish now supports --omit-extensions flag for omitting the extension in the destination path (#602)
  • sops now supports JSON arrays of arrays (#642)

Improvements:

  • Updates and standardization for the dotenv store (#612, #622)
  • Close temp files after using them for edit command (#685)

Bug fixes:

  • AWS SDK usage now correctly resolves the ~/.aws/config file (#680)
  • sops updatekeys now correctly matches config rules (#682)
  • sops updatekeys now correctly uses the config path cli flag (#672)
  • Partially empty sops config files don't break the use of sops anymore (#662)
  • Fix possible infinite loop in PGP's passphrase prompt call (#690)

Project changes:

  • Dockerfile now based off of golang version 1.14 (#649)
  • Push alpine version of docker image to Dockerhub (#609)
  • Push major, major.minor, and major.minor.patch tagged docker images to Dockerhub (#607)
  • Removed out of date contact information (#668)
  • Update authors in the cli help text (#645)
Assets 7

@mozcloudsec mozcloudsec released this Nov 21, 2019

Features:

* `sops exec-env` and `sops exec-file`, two new commands for utilizing sops secrets within a temporary file or env vars

Bug fixes:

* Sanitize AWS STS session name, as sops creates it based off of the machines hostname
* Fix for `decrypt.Data` to support `.ini` files
* Various package fixes related to switching to Go Modules
* Fixes for Vault-related tests running locally and in CI.

Project changes:

* Change to proper use of go modules, changing to primary module name to `go.mozilla.org/sops/v3`
* Change tags to requiring a `v` prefix.
* Add documentation for `sops updatekeys` command
Assets 7
Oct 8, 2019
Same as 3.4.0, but with a v before it for Go modules
  • 3.4.0
  • 14a22d7
  • Compare
    Choose a tag to compare
    Search for a tag
  • 3.4.0
  • 14a22d7
  • Compare
    Choose a tag to compare
    Search for a tag

@mozcloudsec mozcloudsec released this Sep 12, 2019

Features:

  • sops publish, a new command for publishing sops encrypted secrets to S3, GCS, or Hashicorp Vault
  • Support for multiple Azure authentication mechanisms
  • Azure Keyvault support to the sops config file
  • encrypted_regex option to the sops config file

Bug fixes:

  • Return non-zero exit code for invalid CLI flags
  • Broken path handling for sops editing on Windows
  • go lint/fmt violations
  • Check for pgp fingerprint before slicing it

Project changes:

  • Build container using golang 1.12
  • Switch to using go modules
  • Hashicorp Vault server in Travis CI build
  • Mozilla Publice License file to repo
  • Replaced expiring test gpg keys
Assets 7

@mozcloudsec mozcloudsec released this Jun 11, 2019

Bug fixes:

  • Make sure the pgp key fingerprint is longer than 16 characters before
    slicing it. (#463)
  • Allow for --set value to be a string. (#461)

Project changes:

  • Using develop as a staging branch to create releases off of. What
    is in master is now the current stable release.
  • Upgrade to using Go 1.12 to build sops
  • Updated all vendored packages
Assets 7

@autrilla autrilla released this Apr 18, 2019

New features:

  • Multi-document support for YAML files
  • Support referencing AWS KMS keys by their alias
  • Support for INI files
  • Support for AWS CLI profiles
  • Comment support in .env files
  • Added vi to the list of known editors
  • Added a way to specify the GPG key server to use through the
    SOPS_GPG_KEYSERVER environment variable

Bug fixes:

  • Now uses $HOME instead of ~ (which didn't work) to find the GPG home
  • Fix panic when vim was not available as an editor, but other
    alternative editors were
  • Fix issue with AWS KMS Encryption Contexts (#445) with more than one
    context value failing to decrypt intermittently. Includes an
    automatic fix for old files affected by this issue.

Project infrastructure changes:

  • Added integration tests for AWS KMS
  • Added Code of Conduct
Assets 7

@mozcloudsec mozcloudsec released this Nov 8, 2018 · 231 commits to master since this release

Release 3.2.0
Assets 7

@mozcloudsec mozcloudsec released this Sep 27, 2018 · 273 commits to master since this release

* Fix incorrect version number from previous release
Assets 7

@mozcloudsec mozcloudsec released this Sep 12, 2018 · 273 commits to master since this release

* Add support for Azure Key Service
* Fix bug that prevented JSON escapes in input files from working
Assets 7
You can’t perform that action at this time.