Skip to content

Commit

Permalink
SecureDrop 2.7.0
Browse files Browse the repository at this point in the history
  • Loading branch information
zenmonkeykstop committed Nov 7, 2023
1 parent 46bf7cf commit 26ae9cb
Show file tree
Hide file tree
Showing 6 changed files with 22 additions and 70 deletions.
62 changes: 16 additions & 46 deletions changelog.md
Original file line number Diff line number Diff line change
@@ -1,50 +1,17 @@
# Changelog

## 2.7.0~rc4
## 2.7.0

### Web applications

* Fix validation of the submission key; block both Journalist and Source Interfaces if invalid (#7059)

## 2.7.0~rc3

### Web applications

* Use Sequoia and redwood instead of gnupg and pretty_bad_protocol for GPG operations (#7023, #7035, #7029, #7026, #7000)
* Update translation workflow to support continuous updates (#7034)
* Update wordlist to remove potentially confusing or offensive terms (#7008, #7021)

### Development

* Update build script to record commit details (#7019, #7038)

## 2.7.0~rc2

### Web applications

* Update translation workflow to support continuous updates (#7010)

### Operations

* Use systemd timers to check for disconnected submissions and source listings (#7009)
* Dependency changes:
* Update Ansible from 2.9.26 to 6.7.0 (ansible-core version 2.13.7) (#6830)

### Development:

* Dependency changes:
* Update markupsafe from 2.0.1 to 2.1.2 (#7014)

## 2.7.0~rc1

### Web applications
* Use Sequoia and redwood instead of gnupg and pretty_bad_protocol for GPG operations (#6891, #6884, #6913, #6912, #6925, #6926, #6949, #6958, #6892, #6948, #6946, #6970, #6975, #6972, #6983, #6981, #6998)
* Update translation workflow to support continuous updates (#6953, #6954, #6985, #6997, #6984)
* Use Sequoia and redwood instead of gnupg and pretty_bad_protocol for GPG operations (#6891, #6884, #6913, #6912, #6925, #6926, #6949, #6958, #6892, #6948, #6946, #6970, #6975, #6972, #6983, #6981, #6998, #7000, #7026, #7029, #7035, #7023, #7071)
* Update translation workflow to support continuous updates (#6953, #6954, #6985, #6997, #6984, #7010, #7034)
* Update French diceware wordlist (#6936)
* Replace pretty-bad-protocol dependency with vendored version (#6836, #6907)
* Import Markup and escape from markupsafe (#6964)
* Update wordlist to remove potentially confusing or offensive terms (#7008, #7021)
* Validate the submission key,disable Journalist and Source Interfaces if a weak key is found (#7059)
* Dependency changes:
* Update cryptography from 41.0.1 to 41.0.3
* Update cryptography from 41.0.1 to 41.0.3 (#6940)

### Operations

Expand All @@ -54,6 +21,9 @@
* geckodriver to 0.33.0 (#6957)
* Firefox to 115esr, Tor Browser to 13.0 (#7001)
* Update securedrop-admin tooling to reject weak GPG keys with a SHA-1 signature (#6928)
* Use systemd timers to check for disconnected submissions and source listings (#7009)
* Dependency changes:
* Update Ansible from 2.9.26 to 6.7.0 (ansible-core version 2.13.7) (#6830)

### CI

Expand All @@ -62,19 +32,19 @@
* Reduce mypy execution time by skipping redwood compilation and parsing stub (#6971)
* Miscellaneous CI updates (#6844, #6920)


### Development

* Dependencies changes:
* Remove boto and boto3 dependencies (#6890)
* Remove hypothesis dependency (#6893)
* Update certifi from 2022.12.7 to 2023.7.22 (#6900)
* Update pillow from 9.3.0 to 10.0.1 (#6959)
* Improve printing of apparmor denials in testinfra suite (#6883)
* Set "ia" as unavailable locale, "eo" as test locale (#6919)
* Add script to auto-backport PRs to release branches (#6875)
* Miscellaneous development updates (#6842, #6865, #6871, #6882)

* Update build script to record commit details (#7019, #7038)
* Dependency changes:
* Remove boto and boto3 dependencies (#6890)
* Remove hypothesis dependency (#6893)
* Update certifi from 2022.12.7 to 2023.7.22 (#6900)
* Update pillow from 9.3.0 to 10.0.1 (#6959)
* Update markupsafe from 2.0.1 to 2.1.2 (#7014)

## 2.6.1

Expand Down
2 changes: 1 addition & 1 deletion install_files/ansible-base/group_vars/all/securedrop
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@
# Variables that apply to both the app and monitor server go in this file
# If the monitor or app server need different values define the variable in
# hosts_vars/app.yml or host_vars/mon.yml
securedrop_version: "2.7.0~rc4"
securedrop_version: "2.7.0"
securedrop_app_code_sdist_name: "securedrop-app-code-{{ securedrop_version | replace('~', '-') }}.tar.gz"

grsecurity: true
Expand Down
2 changes: 1 addition & 1 deletion molecule/shared/stable.ver
Original file line number Diff line number Diff line change
@@ -1 +1 @@
2.6.1
2.7.0
22 changes: 2 additions & 20 deletions securedrop/debian/changelog
Original file line number Diff line number Diff line change
@@ -1,26 +1,8 @@
securedrop (2.7.0~rc4+focal) focal; urgency=medium
securedrop (2.7.0+focal) focal; urgency=medium

* see changelog.md

-- SecureDrop Team <[email protected]> Thu, 02 Nov 2023 14:47:28 -0700

securedrop (2.7.0~rc3+focal) focal; urgency=medium

* see changelog.md

-- SecureDrop Team <[email protected]> Fri, 27 Oct 2023 17:45:35 -0400

securedrop (2.7.0~rc2+focal) focal; urgency=medium

* see changelog.md

-- SecureDrop Team <[email protected]> Thu, 19 Oct 2023 18:12:25 -0400

securedrop (2.7.0~rc1+focal) focal; urgency=medium

* see changelog.md

-- SecureDrop Team <[email protected]> Fri, 13 Oct 2023 16:22:38 -0400
-- SecureDrop Team <[email protected]> Tue, 07 Nov 2023 12:35:26 -0500

securedrop (2.6.1+focal) focal; urgency=medium

Expand Down
2 changes: 1 addition & 1 deletion securedrop/setup.py
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@

setuptools.setup(
name="securedrop-app-code",
version="2.7.0~rc4",
version="2.7.0",
author="Freedom of the Press Foundation",
author_email="[email protected]",
description="SecureDrop Server",
Expand Down
2 changes: 1 addition & 1 deletion securedrop/version.py
Original file line number Diff line number Diff line change
@@ -1 +1 @@
__version__ = "2.7.0~rc4"
__version__ = "2.7.0"

0 comments on commit 26ae9cb

Please sign in to comment.