xmlsec-4.0.3

What's Changed

• Bump advanced-security/maven-dependency-submission-action from 4.0.0 to 4.0.1 by @dependabot in #281
• Bump com.google.errorprone:error_prone_core from 2.24.1 to 2.25.0 by @dependabot in #280
• Bump com.fasterxml.woodstox:woodstox-core from 6.6.0 to 6.6.1 by @dependabot in #283
• Bump jakarta.activation:jakarta.activation-api from 2.1.2 to 2.1.3 by @dependabot in #284
• Bump actions/setup-java from 4.0.0 to 4.1.0 by @dependabot in #285
• Bump actions/cache from 4.0.0 to 4.0.1 by @dependabot in #286
• Bump jakarta.xml.bind:jakarta.xml.bind-api from 4.0.1 to 4.0.2 by @dependabot in #287
• SANTUARIO-610: Fix NullPointerException in XMLCipher with BC AES GCM by @krah034 in #288
• Bump advanced-security/maven-dependency-submission-action from 4.0.1 to 4.0.2 by @dependabot in #289
• Bump org.apache.maven.plugins:maven-compiler-plugin from 3.12.1 to 3.13.0 by @dependabot in #296
• Bump com.google.errorprone:error_prone_core from 2.25.0 to 2.26.1 by @dependabot in #291
• Bump actions/checkout from 4.1.1 to 4.1.2 by @dependabot in #295
• Bump actions/setup-java from 4.1.0 to 4.2.1 by @dependabot in #294
• [SANTUARIO-613] Remove DH KeyType from the KeyUtils.KeyType enumeration by @jrihtarsic in #297
• Add brainpool curves for EC key generation/cypher (main branch) by @yklymenko in #293
• Bump actions/cache from 4.0.1 to 4.0.2 by @dependabot in #300
• Bump org.cyclonedx:cyclonedx-maven-plugin from 2.7.11 to 2.8.0 by @dependabot in #301
• Bump org.jacoco:jacoco-maven-plugin from 0.8.11 to 0.8.12 by @dependabot in #304
• Bump com.fasterxml.woodstox:woodstox-core from 6.6.1 to 6.6.2 by @dependabot in #303
• [SANTUARIO-611] Add support of ECDSA with SHA3 algorithms by @jrihtarsic in #302
• Bump org.bouncycastle:bcprov-jdk18on from 1.77 to 1.78 by @dependabot in #307
• [SANTUARIO-617] remove mgf element in case of rsa-oaep-mgf1p by @jrihtarsic in #306
• Bump org.slf4j:slf4j-jdk14 from 2.0.12 to 2.0.13 by @dependabot in #308
• Bump org.apache:apache from 31 to 32 by @dependabot in #309
• Bump actions/upload-artifact from 4.3.1 to 4.3.2 by @dependabot in #312
• Bump actions/checkout from 4.1.2 to 4.1.3 by @dependabot in #311
• Bump org.bouncycastle:bcprov-jdk18on from 1.78 to 1.78.1 by @dependabot in #310
• Bump xmlunit.version from 2.9.1 to 2.10.0 by @dependabot in #317
• Bump commons-codec:commons-codec from 1.16.1 to 1.17.0 by @dependabot in #316
• Bump com.google.errorprone:error_prone_core from 2.26.1 to 2.27.0 by @dependabot in #315
• Bump actions/upload-artifact from 4.3.2 to 4.3.3 by @dependabot in #314
• Bump actions/checkout from 4.1.3 to 4.1.4 by @dependabot in #313
• [SANTUARIO-616] enable manual decryption of the EncryptedKey with KeyAgreement by @jrihtarsic in #305
• Bump com.google.errorprone:error_prone_core from 2.27.0 to 2.27.1 by @dependabot in #318
• Bump advanced-security/maven-dependency-submission-action from 4.0.2 to 4.0.3 by @dependabot in #319
• [SANTUARIO-614] Tests for the EC Brainpool key types by @jrihtarsic in #298
• Bump actions/checkout from 4.1.4 to 4.1.5 by @dependabot in #321
• Bump ossf/scorecard-action from 2.3.1 to 2.3.3 by @dependabot in #320
• Implementation of the HKDF derivation function by @jrihtarsic in #271
• Bump github/codeql-action from 2.13.4 to 3.25.6 by @dependabot in #325
• Bump actions/checkout from 4.1.5 to 4.1.6 by @dependabot in #322
• Bump org.apache.maven.plugins:maven-surefire-plugin from 3.2.5 to 3.3.0 by @dependabot in #333
• Bump github/codeql-action from 3.25.6 to 3.25.10 by @dependabot in #332
• Bump actions/checkout from 4.1.6 to 4.1.7 by @dependabot in #331
• Bump com.google.errorprone:error_prone_core from 2.27.1 to 2.28.0 by @dependabot in #329
• Bump org.apache.maven.plugins:maven-javadoc-plugin from 3.6.3 to 3.7.0 by @dependabot in #328
• Bump org.apache.maven.plugins:maven-enforcer-plugin from 3.4.1 to 3.5.0 by @dependabot in #326
• Bump org.apache.maven.plugins:maven-release-plugin from 3.0.1 to 3.1.0 by @dependabot in #335
• Bump org.apache.maven.plugins:maven-failsafe-plugin from 3.2.5 to 3.3.0 by @dependabot in #336
• Fixed KeyValue construction for EC keys by @Gamuci in #334
• Bump junit.version from 5.10.2 to 5.10.3 by @dependabot in #338
• Bump github/codeql-action from 3.25.10 to 3.25.11 by @dependabot in #339
• Bump actions/upload-artifact from 4.3.3 to 4.3.4 by @dependabot in #340
• Bump advanced-security/maven-dependency-submission-action from 4.0.3 to 4.1.0 by @dependabot in #341
• Bump org.apache:apache from 32 to 33 by @dependabot in #342
• Bump org.apache.maven.plugins:maven-surefire-plugin from 3.3.0 to 3.3.1 by @dependabot in #343
• Bump org.apache.maven.plugins:maven-failsafe-plugin from 3.3.0 to 3.3.1 by @dependabot in #344
• Bump org.apache.maven.plugins:maven-release-plugin from 3.1.0 to 3.1.1 by @dependabot in #345
• Bump github/codeql-action from 3.25.11 to 3.25.12 by @dependabot in #346
• Bump commons-codec:commons-codec from 1.17.0 to 1.17.1 by @dependabot in #347
• Bump com.google.errorprone:error_prone_core from 2.28.0 to 2.29.1 by @dependabot in #349
• Bump github/codeql-action from 3.25.12 to 3.25.13 by @dependabot in #352
• Bump org.apache.maven.plugins:maven-javadoc-plugin from 3.7.0 to 3.8.0 by @dependabot in #351
• Bump com.google.errorprone:error_prone_core from 2.29.1 to 2.29.2 by @dependabot in #350
• Bump org.slf4j:slf4j-jdk14 from 2.0.13 to 2.0.14 by @dependabot in #358
• Bump actions/upload-artifact from 4.3.4 to 4.3.5 by @dependabot in #357
• Bump org.cyclonedx:cyclonedx-maven-plugin from 2.8.0 to 2.8.1 by @dependabot in #356
• Bump org.hamcrest:hamcrest-library from 2.2 to 3.0 by @dependabot in #355
• Bump github/codeql-action from 3.25.13 to 3.25.15 by @dependabot in #354
• Bump ossf/scorecard-action from 2.3.3 to 2.4.0 by @dependabot in #353
• Bump org.slf4j:slf4j-jdk14 from 2.0.14 to 2.0.16 by @dependabot in https://github.com/apache/santua...

xmlsec-3.0.4

Full Changelog: xmlsec-3.0.3...xmlsec-3.0.4

xmlsec-4.0.2

What's Changed

• Bump actions/setup-java from 3.13.0 to 4.0.0 by @dependabot in #249
• workaround source RB issue by @hboutemy in #248
• SANTUARIO-511: Implementation of the Diffie-Hellman-ES key exchange for EC and XEC keys by @jrihtarsic in #234
• Bump actions/upload-artifact from 3.1.3 to 4.0.0 by @dependabot in #256
• Bump org.apache.maven.plugins:maven-surefire-plugin from 3.1.2 to 3.2.3 by @dependabot in #255
• Bump org.apache.maven.plugins:maven-failsafe-plugin from 3.1.0 to 3.2.3 by @dependabot in #254
• Bump commons-codec:commons-codec from 1.15 to 1.16.0 by @dependabot in #251
• Bump org.apache.maven.plugins:maven-javadoc-plugin from 3.5.0 to 3.6.3 by @dependabot in #250
• Bump org.apache.maven.plugins:maven-source-plugin from 3.2.1 to 3.3.0 by @dependabot in #260
• Bump org.apache.maven.plugins:maven-compiler-plugin from 3.11.0 to 3.12.1 by @dependabot in #261
• Bump org.apache.felix:maven-bundle-plugin from 5.1.8 to 5.1.9 by @dependabot in #259
• Bump org.apache.maven.plugins:maven-release-plugin from 3.0.0 to 3.0.1 by @dependabot in #258
• Bump org.slf4j:slf4j-jdk14 from 2.0.9 to 2.0.11 by @dependabot in #266
• Bump com.google.errorprone:error_prone_core from 2.23.0 to 2.24.1 by @dependabot in #267
• Bump org.apache.maven.plugins:maven-failsafe-plugin from 3.2.3 to 3.2.5 by @dependabot in #265
• Bump actions/cache from 3.3.2 to 3.3.3 by @dependabot in #263
• Bump org.apache.maven.plugins:maven-surefire-plugin from 3.2.3 to 3.2.5 by @dependabot in #264
• Bump actions/upload-artifact from 4.0.0 to 4.1.0 by @dependabot in #262
• Bump org.apache.maven.plugins:maven-enforcer-plugin from 3.3.0 to 3.4.1 by @dependabot in #268
• Bump com.fasterxml.woodstox:woodstox-core from 6.5.1 to 6.6.0 by @dependabot in #269
• Bump org.cyclonedx:cyclonedx-maven-plugin from 2.7.10 to 2.7.11 by @dependabot in #270
• Bump actions/upload-artifact from 4.1.0 to 4.2.0 by @dependabot in #273
• Bump actions/upload-artifact from 4.2.0 to 4.3.0 by @dependabot in #274
• Bump actions/cache from 3.3.3 to 4.0.0 by @dependabot in #272
• Bump advanced-security/maven-dependency-submission-action from 3.0.3 to 4.0.0 by @dependabot in #275
• Bump junit.version from 5.10.1 to 5.10.2 by @dependabot in #276
• Bump org.slf4j:slf4j-jdk14 from 2.0.11 to 2.0.12 by @dependabot in #277
• Bump commons-codec:commons-codec from 1.16.0 to 1.16.1 by @dependabot in #278
• Bump actions/upload-artifact from 4.3.0 to 4.3.1 by @dependabot in #279

Full Changelog: xmlsec-4.0.1...xmlsec-4.0.2

4.0.1

What's Changed

• [StepSecurity] ci: Harden GitHub Actions by @step-security-bot in #224
• [StepSecurity] ci: Harden GitHub Actions by @step-security-bot in #225
• Bump org.jacoco:jacoco-maven-plugin from 0.8.10 to 0.8.11 by @dependabot in #222
• Bump com.google.errorprone:error_prone_core from 2.22.0 to 2.23.0 by @dependabot in #228
• Make all tests pass with Java 21 by @coheigea in #237
• Bump org.cyclonedx:cyclonedx-maven-plugin from 2.7.9 to 2.7.10 by @dependabot in #238
• Bump ossf/scorecard-action from 2.3.0 to 2.3.1 by @dependabot in #239
• Bump advanced-security/maven-dependency-submission-action from 3.0.2 to 3.0.3 by @dependabot in #232
• Bump actions/checkout from 4.1.0 to 4.1.1 by @dependabot in #233
• Removing protected branches by @coheigea in #241
• Nulling out protected branches by @coheigea in #242
• Remove call to Signature.getProvider() in debug log by @narras-oss in #240
• Bump junit.version from 5.10.0 to 5.10.1 by @dependabot in #243
• Bump org.bouncycastle:bcprov-jdk18on from 1.76 to 1.77 by @dependabot in #245
• Updating Parent Pom by @coheigea in #247

New Contributors

• @narras-oss made their first contribution in #240

Full Changelog: xmlsec-4.0.0...xmlsec-4.0.1

4.0.0

xmlsec-4.0.0

[maven-release-plugin] copy for tag xmlsec-4.0.0

3.0.3

xmlsec-3.0.3

[maven-release-plugin] copy for tag xmlsec-3.0.3

xmlsec-2.3.4

[maven-release-plugin] copy for tag xmlsec-2.3.4