v0.18.0

This is the version of guest-components used with Confidential Containers v0.19.0

What's Changed

• chore: Bump crates to fix vulnerabilities by @stevenhorsman in #1266
• chore(deps): Bump clap from 4.5.53 to 4.5.54 by @dependabot[bot] in #1265
• chore(deps): Bump tokio-util from 0.7.17 to 0.7.18 by @dependabot[bot] in #1264
• chore(deps): Bump prost from 0.14.1 to 0.14.3 by @dependabot[bot] in #1268
• chore(deps): Bump tokio from 1.47.1 to 1.49.0 by @dependabot[bot] in #1270
• chore(deps): Bump github/codeql-action from 4.31.9 to 4.31.10 by @dependabot[bot] in #1273
• attester: add versioned Evidence structs for azure by @mkulke in #1267
• chore(deps): Bump filetime from 0.2.25 to 0.2.27 by @dependabot[bot] in #1274
• chore(deps): Bump toml from 0.9.10+spec-1.1.0 to 0.9.11+spec-1.1.0 by @dependabot[bot] in #1275
• chore(deps): Bump nix from 0.30.1 to 0.31.1 by @dependabot[bot] in #1281
• chore(deps): Bump actions/checkout from 6.0.1 to 6.0.2 by @dependabot[bot] in #1280
• chore(deps): Bump github/codeql-action from 4.31.10 to 4.31.11 by @dependabot[bot] in #1279
• chore(deps): Bump step-security/harden-runner from 2.14.0 to 2.14.1 by @dependabot[bot] in #1282
• toolchain: bump to rust 1.90.0 by @mythi in #1285
• chore(deps): Bump chrono from 0.4.42 to 0.4.43 by @dependabot[bot] in #1283
• rust: fixup missed changes for rust v1.90.0 bump by @fitzthum in #1286
• chore(deps): Bump testcontainers from 0.25.0 to 0.26.3 by @dependabot[bot] in #1269
• chore(deps): Bump criterion from 0.7.0 to 0.8.1 by @dependabot[bot] in #1232
• chore(deps): Bump uuid from 1.19.0 to 1.20.0 by @dependabot[bot] in #1287
• chore(deps): Bump thiserror from 2.0.17 to 2.0.18 by @dependabot[bot] in #1288
• chore(deps): Bump flate2 from 1.1.5 to 1.1.8 by @dependabot[bot] in #1289
• chore(deps): Bump tonic from 0.14.2 to 0.14.3 by @dependabot[bot] in #1291
• chore(deps): Bump jwt-simple from 0.12.13 to 0.12.14 by @dependabot[bot] in #1292
• chore(deps): Bump serial_test from 3.2.0 to 3.3.1 by @dependabot[bot] in #1290
• chore(deps): Bump tonic-build from 0.14.2 to 0.14.3 by @dependabot[bot] in #1297
• chore(deps): Bump tonic-prost from 0.14.2 to 0.14.3 by @dependabot[bot] in #1296
• chore(deps): Bump assert_cmd from 2.1.1 to 2.1.2 by @dependabot[bot] in #1295
• chore(deps): Bump actions/attest-build-provenance from 3.1.0 to 3.2.0 by @dependabot[bot] in #1298
• chore(deps): Bump github/codeql-action from 4.31.11 to 4.32.0 by @dependabot[bot] in #1299
• chore(deps): Bump clap from 4.5.54 to 4.5.56 by @dependabot[bot] in #1301
• chore(deps): Bump docker/login-action from 3.6.0 to 3.7.0 by @dependabot[bot] in #1300
• chore(deps): Bump devicemapper from 0.34.5 to 0.34.6 by @dependabot[bot] in #1304
• chore(deps): Bump bytes from 1.10.1 to 1.11.1 in the cargo group across 1 directory by @dependabot[bot] in #1306
• CDH: Update secure mount for BlockDevice by @Xynnn007 in #1052
• attester: bump az-{snp,tdx}-vtpm crates to 0.8.1 by @mkulke in #1315
• CI: makefile: propagate LIBC environment variable by @manuelh-dev in #1316
• ci: Use gnu libc to build CDH by @manuelh-dev in #1317
• ci: Install new CDH dependencies by @manuelh-dev in #1318
• Add signature support to sealed secrets by @fitzthum in #1272
• chore(deps): Bump time from 0.3.39 to 0.3.47 in the cargo group across 1 directory by @dependabot[bot] in #1310
• chore(deps): Bump criterion from 0.8.1 to 0.8.2 by @dependabot[bot] in #1309
• chore(deps): Bump docker/build-push-action from 6.18.0 to 6.19.2 by @dependabot[bot] in #1321
• chore(deps): Bump github/codeql-action from 4.32.0 to 4.32.3 by @dependabot[bot] in #1320
• chore(deps): Bump tonic-prost-build from 0.14.2 to 0.14.3 by @dependabot[bot] in #1302
• chore(deps): Bump keccak from 0.1.5 to 0.1.6 in the cargo group across 1 directory by @dependabot[bot] in #1325
• ci: Run on ubuntu-24.04-arm for arch aarch64 by @manuelh-dev in #1323
• chore(deps): Bump tempfile from 3.24.0 to 3.25.0 by @dependabot[bot] in #1331
• chore(deps): Bump clap from 4.5.56 to 4.5.60 by @dependabot[bot] in #1329
• chore(deps): Bump actions/dependency-review-action from 98884d411b0f1c583e5ee579e7e897d4623019c2 to dea54b434272cc45b0e9ff17d5f0da4d8676f07d by @dependabot[bot] in #1327
• chore(deps): Bump github/codeql-action from 4.32.3 to 4.32.4 by @dependabot[bot] in #1328
• CDH: remove golang implementation by @Xynnn007 in #1332
• chore(deps): Bump step-security/harden-runner from 2.14.1 to 2.14.2 by @dependabot[bot] in #1312
• attester: fiz az-vtpm quote encoding by @mkulke in #1326
• chore(deps): Bump futures from 0.3.31 to 0.3.32 by @dependabot[bot] in #1334
• chore(deps): Bump strum_macros from 0.27.2 to 0.28.0 by @dependabot[bot] in #1330
• logging: Use tracing suites to replace log/env_logger by @Xynnn007 in #1335
• chore(deps): Bump tonic-prost-build from 0.14.3 to 0.14.5 by @dependabot[bot] in #1339
• chore(deps): Bump flate2 from 1.1.8 to 1.1.9 by @dependabot[bot] in #1338
• chore(deps): Bump testcontainers from 0.26.3 to 0.27.1 by @dependabot[bot] in #1337
• cdh: Add test case using mkfsOpts by @manuelh-dev in #1340
• chore(deps): update reqwest to v0.13 by @Xynnn007 in #1336
• chore(deps): Bump toml from 0.9.11+spec-1.1.0 to 1.0.3+spec-1.1.0 by @dependabot[bot] in #1342
• chore(deps): Bump chrono from 0.4.43 to 0.4.44 by @dependabot[bot] in #1341
• cdh: store ephemeral LUKS headers in tmpfs by @manuelh-dev in #1313
• fix: update openssl-src to 300.5.5 by @pavithiran34 in #1347
• chore(deps): Bump tonic-prost from 0.14.3 to 0.14.5 by @dependabot[bot] in #1345
• aa/attester: fix logging for evidence_getter binary by @Xynnn007 in #1355
• chore(deps): Bump actions/attest-build-provenance from 3.2.0 to 4.1.0 by @dependabot[bot] in #1354
• chore(deps): Bump actions/upload-artifact from 6.0.0 to 7.0.0 by @dependabot[bot] in #1353
• chore(deps): Bump sequoia-openpgp from 2.1.0 to 2.2.0 by @dependabot[bot] in #1352
• chore(deps): Bump actions-rust-lang/setup-rust-toolchain from 1.15.2 to 1.15.3 by @dependabot[bot] in #1351
• chore(deps): Bump actions/dependency-review-action from dea54b434272cc45b0e9ff17d5f0da4d8676f07d to 57a3d46a7be2c2e259fa3284ffc501296337f2ac by @dependabot[bot] in #1349
• agents: add AGENTS.md file by @mkulke in #1357
• ASR: add /info API by @Xynnn007 in #1308
• chore(deps): Bump nix from 0.31.1 to 0.31.2 by @dependabot[bot] in #1360
• kbs_protocol: take TeePubKey EC curve from the key instance by @mythi in #1362
• ci/codeql: add Rust to codeql scanning language list by @Xynnn007 in #1364
• chore(deps): Bump step-security/harden-runner from 2.14.2 to 2.15.0 by @dependabot[bot] in #1350
• chore(deps): Bump anyhow from 1.0.100 to 1.0.102 by @dependabot[bot] in #1346
• chore(deps): Bump tokio from 1.49.0 to 1.50.0 by @dependabot[bot] in #1365
• Add comment about self-signed cert in cdh toml by @bpradipt in #1376
• chore(deps): Bump docker/login-action from 3.7.0 to 4.0.0 by @dependabot[bot] in #1373
• chore(deps): Bump docker/build-push-action from 6.19.2 to 7.0.0 by @dependabot[bot] in #1372
• chore(deps): Bump actions/dependency-review-action from 57a3d46a7be2c2e259fa3284ffc501296337f2ac to f5b971718edcbb31275a1db40004592335c0e031 by @dependabot[bot] in #1371
• chore(deps): Bump step-security/harden-runner from 2.15.0 to 2.15.1 by @dependabot[bot] in #1370
• workflows: Use IBM Actions Z runners for s390x CI jobs by @BbolroC in #1375
• cosign: strip newlines from image signatures by @fitzthum in #1369
• AA/CDH: Add debug level to configuration file by @Xynnn007 in #1356
• workflows: Install oras for IBM Actions Z runners by @BbolroC in #1377

New Contributors

• @manuelh-dev made their first contribution in #1316
• @pavithiran34 made their first contribution in #1347

Full Changelog: v0.17.0...v0.18.0