Sunlight v0.5.0, and a recruitment drive

[Filippo Valsorda]

Hello fellow mortals,

I've published Sunlight v0.5.0, which has already rolled out to Tuscolo.

There are a number of changes to make Sunlight easier to operate, including config cleanups suggested by Andrew Ayer, and automatic root fetching from CCADB. (Double check my work on CCADB fetching, please! In particular the filtering by Intended Use Case(s).)

This release should be mostly backwards compatible, acting as a bridge to a v1.0.0 release which will remove the options that are getting deprecated now.

There is also a new experimental implementation of c2sp.org/tlog-witness. Sunlight instances with their lock backend make for an excellent witness, which can be used by other parts of the transparency ecosystem, or by future WebPKI designs like Merkle Tree Certificates.

Part of the motivation for the usability improvements was a log operator recruitment pitch I just published. If you can think of a potential operator, consider sending them that article! To help new operators, there's also a freshly rewritten README and a new live Tuscolo config web UI.

Alla prossima,

Filippo

P.S. scheduling note: I will be taking the second half of July off, from Wednesday the 16th to the 31st. If there's anything pending that's waiting on me, please let me know as soon as possible!

[Filippo Valsorda]

Hi again,

I just published v0.5.1, which implements SCT auditing for Static CT logs.

https://pkg.go.dev/filippo.io/sunl...@v0.5.1#example-Client.CheckInclusion

This is a breaking change for the client API, hopefully the last one before v1.0.0.

Cheers,

Filippo

--

You received this message because you are subscribed to the Google Groups "Certificate Transparency Policy" group.

To unsubscribe from this group and stop receiving emails from it, send an email to ct-policy+...@chromium.org.

To view this discussion visit https://groups.google.com/a/chromium.org/d/msgid/ct-policy/f6fb609a-e6d3-4161-bec1-1093b70f86ca%40app.fastmail.com.