🚀 Features

• feat(byo-pki): allow users to define their own trusted root (#1423)

🧰 Maintenance

• chore: Bump kwctl version to v1.31.0 (#1434)
• build(deps): update all dependencies updates to v4.5.53 (#1431)
• build(deps): update taiki-e/install-action action to v2.62.56 (#1432)
• build(deps): update actions/checkout action to v6 (#1433)
• chore: Bump kwctl version to v1.31.0-rc1 (#1430)
• build(deps): update github-actions (#1427)
• build(deps): update all dependencies updates (#1428)

🚀 Features

• feat(byo-pki): allow users to define their own trusted root (#1423)

🧰 Maintenance

• chore: Bump kwctl version to v1.31.0-rc1 (#1430)
• build(deps): update github-actions (#1427)
• build(deps): update all dependencies updates (#1428)

• update deps (#1425)

🚀 Features

• feat: Print errors of validating settings as multiline (#1416)

🧰 Maintenance

• chore: prepare 1.31.1 release (#1426)
• build(deps): update github-actions (#1422)
• build(deps): update all dependencies updates (#1421)
• build(deps): update rust crate walrus to v0.24.3 (#1417)
• build(deps): update github-actions (#1418)
• build(deps): update all dependencies updates (#1405)
• build(deps): update github-actions (#1406)
• build(deps): update github-actions (major) (#1407)
• deps: bump testcontainers to 0.25.2 (#1415)

• deps: Bump wasmtime patch to 38.0.3 (#1410)
• ci: Correctly upload assets after sigstore v3 changes (#1403)
• prepare for release (#1400)

⚠️ Breaking changes

• ci!: Update signing for sigstore v3 (#1401)
• fix!: sigstore handle multiple rekor keys (#1396)

🐛 Bug Fixes

• fix(ci): sign blobs with cosign v3 signature bundle. (#1412)
• fix(ci): disable new cosign signature bundle format. (#1404)
• fix!: sigstore handle multiple rekor keys (#1396)

🧰 Maintenance

• chore: bump v1.30.0 (#1414)
• chore: prepare 1.30.0-rc2 release (#1413)
• build(deps): update sigstore/cosign-installer action to v4 (#1399)
• build(deps): update github-actions (#1398)
• build(deps): update all dependencies updates (#1397)
• build(deps): update all dependencies updates (#1392)
• build(deps): update github-actions (#1393)

• deps: Bump wasmtime patch to 38.0.3 (#1410)
• ci: Correctly upload assets after sigstore v3 changes (#1403)
• prepare for release (#1400)

⚠️ Breaking changes

• ci!: Update signing for sigstore v3 (#1401)
• fix!: sigstore handle multiple rekor keys (#1396)

🐛 Bug Fixes

• fix(ci): sign blobs with cosign v3 signature bundle. (#1412)
• fix(ci): disable new cosign signature bundle format. (#1404)
• fix!: sigstore handle multiple rekor keys (#1396)

🧰 Maintenance

• chore: prepare 1.30.0-rc2 release (#1413)
• build(deps): update sigstore/cosign-installer action to v4 (#1399)
• build(deps): update github-actions (#1398)
• build(deps): update all dependencies updates (#1397)
• build(deps): update all dependencies updates (#1392)
• build(deps): update github-actions (#1393)

• ci: Correctly upload assets after sigstore v3 changes (#1403)
• prepare for release (#1400)

⚠️ Breaking changes

• ci!: Update signing for sigstore v3 (#1401)
• fix!: sigstore handle multiple rekor keys (#1396)

🐛 Bug Fixes

• fix!: sigstore handle multiple rekor keys (#1396)

🧰 Maintenance

• build(deps): update sigstore/cosign-installer action to v4 (#1399)
• build(deps): update github-actions (#1398)
• build(deps): update all dependencies updates (#1397)
• build(deps): update all dependencies updates (#1392)
• build(deps): update github-actions (#1393)

⚠️ Breaking changes

• feat!: Implement vap scaffold vap for paramKind, paramRef, failurePolicy (#1390)

🚀 Features

• feat!: Implement vap scaffold vap for paramKind, paramRef, failurePolicy (#1390)

🐛 Bug Fixes

• fix: graceful handling of failures while initializing Sigstore (#1394)
• fix js policies built with latest javy (#1388)

🧰 Maintenance

• chore: prepare 1.30.0-beta1 release (#1391)
• build(deps): update github-actions (#1389)
• build(deps): update github-actions (#1387)
• build(deps): update rust crate tempfile to v3.23.0 (#1374)
• build(deps): update github-actions (#1385)

What's Changed

• Backport graceful handling of failures during sigstore init to 1.29 by @flavio in #1395

Full Changelog: v1.29.0...v1.29.1

⚠️ Breaking changes

• feat!: Implement vap scaffold vap for paramKind, paramRef, failurePolicy (#1390)

🚀 Features

• feat!: Implement vap scaffold vap for paramKind, paramRef, failurePolicy (#1390)

🐛 Bug Fixes

• fix js policies built with latest javy (#1388)

🧰 Maintenance

• chore: prepare 1.30.0-beta1 release (#1391)
• build(deps): update github-actions (#1389)
• build(deps): update github-actions (#1387)
• build(deps): update rust crate tempfile to v3.23.0 (#1374)
• build(deps): update github-actions (#1385)

• build: Bump version to 1.29.0 (#1384)
• deps: Selectively bump policy-evaluator to 0.30.1 (#1379)
• build: Bump version to 1.29.0-rc3 (#1378)
• build: Bump to 1.29.0-rc2 (#1376)
• build: Bump version to 1.29.0 (#1372)

⚠️ Breaking changes

For the crypto host capability that verifies x.509 and PKI certificates,
the verification is now more strict as we have moved from the picky
crate to rustls-webpki. For more information, see:
https://www.kubewarden.io/blog/2025/10/kubewarden-1.29-release/

🧰 Maintenance

• build(deps): update github-actions (#1383)
• build(deps): update taiki-e/install-action action to v2.62.12 (#1382)
• build(deps): update taiki-e/install-action action to v2.62.11 (#1381)
• build(deps): update taiki-e/install-action action to v2.62.10 (#1380)
• build(deps): update github-actions (#1377)
• build(deps): update taiki-e/install-action action to v2.62.6 (#1375)
• build(deps): update taiki-e/install-action action to v2.62.5 (#1373)
• chore(deps): update policy-evaluator (#1371)
• build(deps): update taiki-e/install-action action to v2.62.2 (#1370)
• build(deps): update all patch level dependencies (#1367)
• build(deps): update taiki-e/install-action action to v2.62.1 (#1369)
• build(deps): update taiki-e/install-action action to v2.61.12 (#1368)
• build(deps): update taiki-e/install-action action to v2.61.9 (#1366)
• build(deps): update taiki-e/install-action action to v2.61.8 (#1365)
• build(deps): update all patch level dependencies (#1364)
• chore: update policy-evaluator. (#1363)
• build(deps): update github-actions (#1361)
• build(deps): update all patch level dependencies (#1362)
• build(deps): update all patch level dependencies to v1.0.221 (#1360)
• build(deps): update github-actions (#1359)
• build(deps): update rust crate tempfile to v3.22.0 (#1358)
• build(deps): update rust crate k8s-openapi to 0.26.0 (#1356)
• build(deps): update taiki-e/install-action action to v2.60.0 (#1357)
• build(deps): update github-actions (#1354)
• build(deps): update github-actions (#1352)
• chore(deps): update actions/github-script action to v8 (#1353)
• build(deps): update github-actions (#1350)
• build(deps): update crate-ci/typos action to v1.36.0 (#1349)
• build(deps): update all patch level dependencies (#1348)
• build(deps): update github-actions (#1347)
• build(deps): update rust crate time to v0.3.42 (#1346)
• chore(deps): update actions/attest-build-provenance action to v3 (#1345)
• build(deps): update rust crate termimad to 0.34.0 (#1344)
• build(deps): update github-actions (#1343)
• build(deps): update rust crate tracing-subscriber to v0.3.20 [security] (#1342)