Skip to content

πŸŽ‰ Cocos v0.8.0 Release Notes

Choose a tag to compare

View all tags
@SammyOina SammyOina released this 10 Oct 11:18
· 8 commits to main since this release
v0.8.0
04b0cdf
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

We're excited to announce the release of Cocos v0.8.0! This release brings significant improvements to attestation handling, enhanced security features, and better code reusability.

🌟 Highlights

Enhanced Attestation Policy

  • Improved CLI attestation policy tools for better developer experience
  • Updated attestation policy configurations for both AMD and Intel platforms
  • Added reported TCB support to attestation policy for more comprehensive security validation
  • SEV version bump ensuring compatibility with the latest security standards

Performance & Security Improvements

  • VCEK caching on aTLS verification - significantly improves performance by caching VCEK certificates during attestation TLS verification
  • Refactored attestation handling - renamed AttestationResult to AzureAttestationToken for better clarity and consistency

Architecture Enhancements

  • Refactored HTTP and gRPC clients for improved reusability with Cube
  • Enhanced aTLS and gRPC server architecture - now uses CertificateProvider interface for better abstraction and flexibility
  • Updated certificate handling to align with the latest certs library changes

πŸ“¦ Dependency Updates

Major Updates

  • github.com/absmach/supermq: 0.16.0 β†’ 0.18.1
  • github.com/absmach/certs: 0.0.0-20250707105817 β†’ 0.18.0
  • github.com/docker/docker: 28.3.2 β†’ 28.5.0
  • google.golang.org/grpc: 1.74.2 β†’ 1.75.0
  • google.golang.org/protobuf: 1.36.6 β†’ 1.36.10
  • cloud.google.com/go/storage: 1.55.0 β†’ 1.57.0
  • sev (attestation policy): 6.2.1 β†’ 7.0.0

Other Updates

  • github.com/golang-jwt/jwt/v5: 5.2.2 β†’ 5.3.0
  • github.com/stretchr/testify: 1.10.0 β†’ 1.11.0
  • github.com/spf13/cobra: 1.9.1 β†’ 1.10.1
  • github.com/spf13/pflag: 1.0.9 β†’ 1.0.10
  • github.com/google/go-tpm: 0.9.5 β†’ 0.9.6
  • golang.org/x/term: 0.33.0 β†’ 0.35.0

πŸ”§ Technical Improvements

  • Downgraded Golang version for HAL to improve compatibility
  • Refactored codebase for better maintainability and reusability
  • Enhanced attestation policy JSON configurations

πŸ‘₯ Contributors

A huge thank you to everyone who contributed to this release:

πŸ“ Full Changelog

For a complete list of changes, see the [full changelog](v0.7.0...v0.8.0)

Ready to upgrade? Check out our documentation for migration guidelines and new feature usage examples.

Contributors

jovan-djukic, dependabot, and 3 other contributors
Assets 7
Loading