Trusted Compute V3.1-rc1 release

What's Changed

• 1.4.1-dev version update by @lsubash in #46
• chore: cleanup and enforce tags for workflows by @cgoea in #53
• Uninstall flow of trusted workload is fixed. by @jena-satyabrata in #51
• [Attestation-Manager] Adding Error handler to capture flavors and tru… by @prashant9394 in #47
• Verifier remove unsupported feature set by @lsubash in #45
• chore: fix zizmor findings by @cgoea in #58
• chore: bump orch-ci version by @cgoea in #59
• fix: bump pre-merge workflow version by @cgoea in #60
• Trustagent: Use onetime job for TA token creation by @lsubash in #50
• build edge microvisior image from rpm by @kumara1-intel in #61
• [Verifier] Add gitleaks allow and .gitleaksignore by @lsubash in #63
• gorm v2 upgrade by @vtcao297 in #55
• Dev/hemanthk/push dev by @hemanthsm in #57
• bump kata deploy version to 1.4.1 by @kumara1-intel in #65
• Bump up the helm chart version and kata deploy image version to 1.4.2 by @jena-satyabrata in #67
• tw version changed to 1.4.3-dev by @kumara1-intel in #68
• file permission fix for binaries in /opt/kata by @kumara1-intel in #71
• update trusted-workload component validation with more test case by @kumara1-intel in #69
• certpath and dependency lock by @vtcao297 in #62
• openssf: Address OpenSSF scorecard recommendation by @vtcao297 in #64
• chore: add secret for teams notification by @cgoea in #89
• chore: remove renamed flag by @cgoea in #92
• docker: bump debian from 4b50eb6 to 90522ee in /attestation-manager by @dependabot[bot] in #73
• docker: bump debian from 4b50eb6 to 90522ee in /attestation-verifier/src/build/image/aas-manager by @dependabot[bot] in #74
• docker: bump debian from 4b50eb6 to 90522ee in /attestation-verifier/src/build/image/authservice by @dependabot[bot] in #75
• docker: bump debian from 4b50eb6 to 90522ee in /attestation-verifier/src/build/image/cms by @dependabot[bot] in #76
• docker: bump debian from 4b50eb6 to 90522ee in /attestation-verifier/src/build/image/hvs by @dependabot[bot] in #77
• docker: bump debian from 4b50eb6 to 90522ee in /attestation-verifier/src/build/image/tagent by @dependabot[bot] in #78
• docker: bump debian from 4b50eb6 to 90522ee in /attestation-verifier/utils/tools/containers/nats by @dependabot[bot] in #80
• docker: bump debian from 4b50eb6 to 90522ee in /attestation-verifier/utils/tools/containers/init-wait by @dependabot[bot] in #83
• Verifier: trivi fixes by @lsubash in #90
• Verifier: Nats to use one pod replica by @lsubash in #86
• pcr11 usage for IMA by @hemanthsm in #88
• [Verifier] Configure Nats conf through helm charts by @lsubash in #70
• [gha] Bump open-edge-platform/orch-ci from 0.1.21 to 0.1.25 by @dependabot[bot] in #97
• Verifier security context rootfilesystem as read only by @lsubash in #99
• Trivi attestation manager by @lsubash in #98
• Tc samples by @hemanthsm in #72
• Version update to 1.43 for attestation components by @lsubash in #104
• [gha] Bump open-edge-platform/orch-ci from 0.1.25 to 0.1.26 by @dependabot[bot] in #103
• trusted workload 1.4.3 release by @kumara1-intel in #100
• [gha] Bump open-edge-platform/orch-ci from 0.1.26 to 0.1.29 by @dependabot[bot] in #115
• Version update for 1.44-dev by @lsubash in #118
• Swagger docs by @hemanthsm in #87
• docker: bump debian from 90522ee to e5865e6 in /attestation-verifier/src/build/image/aas-manager by @dependabot[bot] in #107
• docker: bump debian from 90522ee to e5865e6 in /attestation-verifier/src/build/image/hvs by @dependabot[bot] in #108
• docker: bump debian from 90522ee to e5865e6 in /attestation-verifier/src/build/image/authservice by @dependabot[bot] in #109
• docker: bump debian from 90522ee to e5865e6 in /attestation-verifier/utils/tools/containers/init-wait by @dependabot[bot] in #110
• docker: bump debian from 90522ee to e5865e6 in /attestation-manager by @dependabot[bot] in #111
• deps: bump golang.org/x/net from 0.39.0 to 0.40.0 in /attestation-verifier/src by @dependabot[bot] in #85
• docker: bump debian from 90522ee to e5865e6 in /attestation-verifier/src/build/image/tagent by @dependabot[bot] in #112
• docker: bump debian from 90522ee to e5865e6 in /attestation-verifier/src/build/image/cms by @dependabot[bot] in #113
• docker: bump debian from 90522ee to e5865e6 in /attestation-verifier/utils/tools/containers/nats by @dependabot[bot] in #114
• Go update for CVE-2025-22874 by @lsubash in #119
• Nats: update security context by @lsubash in #102
• Bump golang.org/x/net from 0.39.0 to 0.40.0 in /attestation-manager/src in the go_modules group across 1 directory by @dependabot[bot] in #66
• [Attestation] Add ttlSecondsAfterFinished job specification by @lsubash in #106
• [gha] Bump open-edge-platform/orch-ci from 0.1.29 to 0.1.31 by @dependabot[bot] in #121
• deps: bump github.com/open-edge-platform/infra-managers/attestationstatus from 0.0.0-20250401180327-e213f1be8b25 to 0.6.0 in /attestation-manager/src by @dependabot[bot] in #84
• [gha] Bump open-edge-platform/orch-ci from 0.1.31 to 0.1.32 by @dependabot[bot] in #135
• deps: bump github.com/go-viper/mapstructure/v2 from 2.2.1 to 2.3.0 in /attestation-verifier/src in the go_modules group across 1 directory by @dependabot[bot] in #123
• docker: bump debian from e5865e6 to 6ac2c08 in /attestation-verifier/src/build/image/hvs by @dependabot[bot] in #127
• docker: bump debian from e5865e6 to 6ac2c08 in /attestation-manager by @dependabot[bot] in #128
• docker: bump debian from e5865e6 to 6ac2c08 in /attestation-verifier/src/build/image/tagent by @dependabot[bot] in #129
• docker: bump debian from e5865e6 to 6ac2c08 in /attestation-verifier/utils/tools/containers/init-wait by @dependabot[bot] in #130
• docker: bump debian from e5865e6 to 6ac2c08 in /attestation-verifier/src/build/image/aas-manager by @dependabot[bot] in #131
• docker: bump debian from e5865e6 to 6ac2c08 in /attestation-verifier/src/build/image/authservice by @dependabot[bot] in #132
• docker: bump debian from e5865e6 to 6ac2c08 in /atte...

EMF-v3.0.0

What's Changed

• fix helm lint error by @kumara1-intel in #1
• Update CODEOWNERS by @pchand20 in #3
• kata artifacts file permission fix by @kumara1-intel in #8
• Implement retry mechanism for writing IMA policy and enhance error ha… by @hemanthsm in #4
• Dev/subash/passrand by @lsubash in #7
• Uninstall process with attestation use case by @lsubash in #5
• [Attestation - Manager] Update flow to detect Pod-crash and reboot of… by @prashant9394 in #2
• [Attestation-Manager] Updated Secureboot disabled status flow by @prashant9394 in #11
• remove node label use for kata artifact installation by @kumara1-intel in #12
• Attestation Manager mount name update by @lsubash in #13
• golang 1.23.7 upgrade by @lsubash in #6
• Add paths to allowlist for Trusted workload in values.yaml by @hemanthsm in #14
• [Verifier] Fix Lint errors by @lsubash in #16
• Bump version to 1.3.0-dev for attestation components and trusted work… by @hemanthsm in #15
• Update version to 1.3.0 by @kumara1-intel in #18
• Disable version check in post-merge workflows and pre-merge pipeline by @kumara1-intel in #19
• Fixing trivy scan issues by @prashant9394 in #23
• Updated Docker File by @prashant9394 in #22
• Add user to verifier docker files by @lsubash in #20
• updated with review comments for ReadMe by @srinivasmusti in #26
• removing forbidden lint script by @pchand20 in #27
• Fix trivy issues by @prashant9394 in #24
• Fix CVE-2020-26160 for jwt by @lsubash in #29
• fix namespace issue for cc-operator. by @jena-satyabrata in #30
• JWT CVE fixes by @lsubash in #31
• Update README.md by @pchand20 in #32
• Bump version to 1.3.1-dev across all components and update imaAllowli… by @hemanthsm in #33
• Enable version check in post-merge workflows and pre-merge pipeline by @hemanthsm in #34
• Revert "Enable version check in post-merge workflows and pre-merge pi… by @lsubash in #37
• Jwt CVE fix by @lsubash in #39
• User name type fix in docker by @lsubash in #35
• Verifier uninstall by @lsubash in #40
• Update README.md by @cjbooth in #38
• Dev/hemanthk/attestation fixes by @hemanthsm in #41
• Fix for TA uninstall by @lsubash in #42
• Bump version to 1.4.0 by @hemanthsm in #43
• Dev/hemanthk/tw revert by @hemanthsm in #44

New Contributors

• @kumara1-intel made their first contribution in #1
• @pchand20 made their first contribution in #3
• @hemanthsm made their first contribution in #4
• @lsubash made their first contribution in #7
• @srinivasmusti made their first contribution in #26
• @jena-satyabrata made their first contribution in #30
• @cjbooth made their first contribution in #38

Full Changelog: https://github.com/open-edge-platform/trusted-compute/commits/v3.0.0-rc4

v3.0.0-rc3

this is rc3 candidate tag release

What's Changed

• fix helm lint error by @kumara1-intel in #1
• Update CODEOWNERS by @pchand20 in #3
• kata artifacts file permission fix by @kumara1-intel in #8
• Implement retry mechanism for writing IMA policy and enhance error ha… by @hemanthsm in #4
• Dev/subash/passrand by @lsubash in #7
• Uninstall process with attestation use case by @lsubash in #5
• [Attestation - Manager] Update flow to detect Pod-crash and reboot of… by @prashant9394 in #2
• [Attestation-Manager] Updated Secureboot disabled status flow by @prashant9394 in #11
• remove node label use for kata artifact installation by @kumara1-intel in #12
• Attestation Manager mount name update by @lsubash in #13
• golang 1.23.7 upgrade by @lsubash in #6
• Add paths to allowlist for Trusted workload in values.yaml by @hemanthsm in #14
• [Verifier] Fix Lint errors by @lsubash in #16
• Bump version to 1.3.0-dev for attestation components and trusted work… by @hemanthsm in #15
• Update version to 1.3.0 by @kumara1-intel in #18
• Disable version check in post-merge workflows and pre-merge pipeline by @kumara1-intel in #19

New Contributors

• @kumara1-intel made their first contribution in #1
• @pchand20 made their first contribution in #3
• @hemanthsm made their first contribution in #4
• @lsubash made their first contribution in #7

Full Changelog: https://github.com/open-edge-platform/trusted-compute/commits/v3.0.0-rc3