v0.14.0

Overview

• Add advice for handling error
• Bug fixes
• Dependency updates
• built using Go 1.19.10
  • Statically linked
  • Windows (x86, x64)
  • Linux (x86, x64)

Added

• (GH-585) Add advice for read: connection reset by peer error

Changed

• Dependencies
  • Go
    • 1.19.9 to 1.19.10
  • atc0005/go-nagios
    • v0.14.0 to v0.15.0
  • atc0005/go-ci
    • go-ci-oldstable-build-v0.10.5 to go-ci-oldstable-build-v0.10.6
  • mattn/go-isatty
    • v0.0.18 to v0.0.19

Fixed

• (GH-579) Formatted expiration has stray leading space when only hours remain
• (GH-583) Disable depguard linter
• (GH-584) Fix TCP port flag validation

References

• See the v0.14.0 milestone for the issues associated with this release.
• See our CHANGELOG for more information.

v0.13.1

Overview

• Bug fixes
• Dependency updates
• built using Go 1.19.9
  • Statically linked
  • Windows (x86, x64)
  • Linux (x86, x64)

Changed

• Dependencies
  • Go
    • 1.19.7 to 1.19.9
  • atc0005/go-ci
    • go-ci-oldstable-build-v0.10.3 to go-ci-oldstable-build-v0.10.5
  • rs/zerolog
    • v1.29.0 to v1.29.1
  • golang.org/x/sys
    • v0.6.0 to v0.8.0

Fixed

• (GH-574) Misc cleanup tasks
• (GH-575) Fix markdownlint linting errors

References

• See the v0.13.1 milestone for the issues associated with this release.
• See our CHANGELOG for more information.

v0.13.0

Overview

• Add support for rootless container builds
• Generate dev packages with release builds
• Bug fixes
• Dependency updates
• built using Go 1.19.7
  • Statically linked
  • Windows (x86, x64)
  • Linux (x86, x64)

Added

• Builds
  • (GH-541) Makefile | Include dev packages with future stable releases
  • (GH-548) Add rootless container builds via Docker/Podman

Changed

• Dependencies
  • atc0005/go-ci
    • go-ci-oldstable-build-v0.9.0 to go-ci-oldstable-build-v0.10.3
  • mattn/go-isatty
    • v0.0.17 to v0.0.18
  • golang.org/x/sys
    • v0.5.0 to v0.6.0

Fixed

• (GH-544) Fix lscert Windows binary InternalName metadata
• (GH-546) Add missing return for perfdata add failure case
• (GH-550) Update vuln analysis GHAW to use on.push hook
• (GH-552) cmd/certsum/certcheck.go:89:2: unused-parameter: parameter
  'rateLimiter' seems to be unused, consider removing or renaming it as _
  (revive)
• (GH-553) internal/config/logging.go:142:2: if-return: redundant if ...; err
  != nil check, just return error instead. (revive)
• (GH-554) internal/certs/validation-results.go:693:47: unused-parameter:
  parameter 'verbose' seems to be unused, consider removing or renaming it as
  _ (revive)
• (GH-555) internal/certs/validation-sans.go:82:2: unused-parameter: parameter
  'dnsName' seems to be unused, consider removing or renaming it as _ (revive)
• (GH-556) Implement certScanner rate limiting
• (GH-565) Fix some errwrap linting errors

References

• See the v0.13.0 milestone for the issues associated with this release.
• See our CHANGELOG for more information.

v0.12.0

Overview

• Add new flags to check_cert plugin
• Change format of emitted performance data "expiration" metrics
• Change exit state for several scenarios
• Give leaf cert highest priority for non-OK states
• Bug fixes
• built using Go 1.19.6
  • Statically linked
  • Windows (x86, x64)
  • Linux (x86, x64)

Added

• (GH-397) Add support for ignoring expired intermediate/root certificates
  • add ignore-expired-intermediate-certs flag to allow explicitly ignoring
    expired intermediate certificates in a chain
  • add ignore-expired-root-certs flag to allow explicitly ignoring expired
    intermediate certificates in a chain
• (GH-530) Update netutils.GetCerts to log num certs fetched

Changed

• (GH-281) check_cert | Give leaf cert highest priority when it is expiring or
  expired
• (GH-529) Update handling of performance data metrics to allow emitting
  negative expiration values

Fixed

• (GH-505) Setting up an "expiration only" monitoring configuration for a
  self-signed certificate without SANs entries fails unless
  ignore-hostname-verification-if-empty-sans flag is specified
• (GH-525) Explicitly ignoring OK/passing validation results does not work
• (GH-531) Fix Makefile find command printf syntax
• (GH-509) chcon: can't apply partial context to unlabeled file
  '/usr/lib64/nagios/plugins/check_cert'
• (GH-536) Use UNKNOWN state for perfdata add failures
• (GH-537) Use UNKNOWN state for invalid command-line args
• (GH-538) Use WARNING state for unexpected cert file content

References

• See the v0.12.0 milestone for the issues associated with this release.
• See our CHANGELOG for more information.

v0.11.2

Overview

• Build improvements
• GitHub Actions Workflows updates
• built using Go 1.19.6
  • Statically linked
  • Windows (x86, x64)
  • Linux (x86, x64)

Changed

• Dependencies

  • Go
    • 1.19.5 to 1.19.6
  • ghcr.io/atc0005/go-ci build image
    • go-ci-oldstable-build-v0.9.0
  • (GH-516) Remove dependabot/tools monitoring

• Builds

  • (GH-506) Build dev/stable releases using go-ci Docker image
    • using an oldstable atc0005/go-ci variant for now
    • via docker-release-build recipe
    • via docker-dev-build recipe
  • (GH-512) Replace gogeninstall recipe with depsinstall
  • (GH-514) Use git-describe-semver for generating release ver
    • this results in a version pattern change
      • packages (name, internal)
      • binaries (internal)
  • (GH-515) Add docker-packages recipe

• GitHub Actions

  • (GH-502) Drop Push Validation workflow
  • (GH-503) Rework workflow scheduling
  • (GH-518) Remove Push Validation workflow status badge

References

• See the v0.11.2 milestone for the issues associated with this release.
• See our CHANGELOG for more information.

v0.11.1

Overview

• Bugfixes
• Build improvements
• built using Go 1.19.5
  • Statically linked
  • Windows (x86, x64)
  • Linux (x86, x64)

Changed

• (GH-496) Update package generation to use W.X.Y-Z naming pattern

Fixed

• (GH-493) ERROR 404: Not Found when attempting to download DEB, RPM
  packages using links files
• (GH-495) sha256sum: WARNING: 1 listed file could not be read error when
  attempting to validate package checksums
• (GH-497) Fix windows-x64 binary download links

References

• See the v0.11.1 milestone for the issues associated with this release.
• See our CHANGELOG for more information.

v0.11.0

Overview

• Added support for generating DEB, RPM packages
• Binaries are compressed (~ 66% smaller)
• Overall Makefile improvements
• Performance data tweaks
• built using Go 1.19.5
  • Statically linked
  • Windows (x86, x64)
  • Linux (x86, x64)

Added

• (GH-439) Generate RPM/DEB packages using nFPM
• (GH-475) Add min expiration lifetime value to expires_leaf,
  expires_intermediate performance data metrics
• (GH-470) Makefile: Compress binaries & use static filenames
• (GH-471) Makefile: Add missing "standard" recipes
• (GH-473) Add version details to Windows executables
• (GH-477) Makefile: Add recipe to generate "dev" packages

Changed

• Dependencies
  • golang.org/x/sys
    • v0.4.0 to v0.5.0
• (GH-476) Makefile: Replace (unneeded) recursively expanded variables with
  simply expanded variables
• (GH-489) Update Makefile recipes for dev/stable releases

References

• See the v0.11.0 milestone for the issues associated with this release.
• See our CHANGELOG for more information.

v0.10.0

Overview

• Added performance data metrics
• Bug fixes
• built using Go 1.19.5
  • Statically linked
  • Windows (x86, x64)
  • Linux (x86, x64)

Added

• (GH-445) Emit "days remaining" and count of certificates type performance
  data metrics
  • expires_leaf
  • expires_intermediate
  • certs_present_leaf
  • certs_present_intermediate
  • certs_present_root
  • certs_present_unknown

Fixed

• (GH-460) Update certs.NextToExpire to add guard, clarify
• (GH-461) SNI-required host value not set when server value is specified as
  IP Address and DNS Name is set properly

References

• See the v0.10.0 milestone for the issues associated with this release.
• See our CHANGELOG for more information.

v0.9.3

Overview

• Bug fixes
• Dependency updates
• GitHub Actions Workflows updates
• built using Go 1.19.5
  • Statically linked
  • Windows (x86, x64)
  • Linux (x86, x64)

Changed

• Dependencies
  • Go
    • 1.19.4 to 1.19.5
  • atc0005/go-nagios
    • v0.10.2 to v0.14.0
  • rs/zerolog
    • v1.28.0 to v1.29.0
  • github.com/mattn/go-isatty
    • v0.0.16 to v0.0.17
  • golang.org/x/sys
    • v0.3.0 to v0.4.0
• (GH-450) Add Go Module Validation, Dependency Updates jobs

Fixed

• (GH-440) Fix mispelling of Inspector app type
• (GH-443) Drop plugin runtime tracking, update library usage

References

• See the v0.9.3 milestone for the issues associated with this release.
• See our CHANGELOG for more information.

v0.9.2

Overview

• Bug fixes
• Dependency updates
• GitHub Actions Workflows updates
• built using Go 1.19.4
  • Statically linked
  • Windows (x86, x64)
  • Linux (x86, x64)

Changed

• Dependencies
  • Go
    • 1.19.1 to 1.19.4
  • atc0005/go-nagios
    • v0.10.0 to v0.10.2
  • github.com/mattn/go-colorable
    • v0.1.12 to v0.1.13
  • github.com/mattn/go-isatty
    • v0.0.14 to v0.0.16
  • golang.org/x/sys
    • v0.0.0-20210927094055-39ccf1dd6fa6 to v0.3.0
• (GH-421) Refactor GitHub Actions workflows to import logic
• (GH-422) GitHub Actions workflows refactor follow-up
• (GH-423) Update README to include go.mod badge

Fixed

• (GH-424) Fix project repo links
• (GH-427) Issues with config.supportedLogLevels() helper function
• (GH-429) Prune stray space in doc comment
• (GH-432) Fix Makefile Go module base path detection

References

• See the v0.9.2 milestone for the issues associated with this release.
• See our CHANGELOG for more information.