What's Changed

• Bump io.undertow:undertow-core from 2.2.24.Final to 2.3.13.Final
• Bump org.bouncycastle:bcprov-jdk18on from 1.77 to 1.78 by @dependabot in #24
• Drop CI tests for Java 8 (due to io.undertow:undertow-core 2.3.x)

Full Changelog: pem-keystore-2.3.0...pem-keystore-2.4.0

What's Changed

• Bump undertow-core from 2.2.19.Final to 2.2.24.Final by @dependabot in #17
• chore(deps): Update bouncycastle to v1.77, fixes CVE-2023-33201 by @konrad-ohms in #21
• Bump guava from 31.1-jre to 32.0.0-jre by @dependabot in #19

CVE-2023-33201 & other dependencies

While this update contains a dependency update due to CVE-2023-33201, this CVE doesn't affect pem-keystore, as the relevant code is not used. Still, it might be flagged by security scanners. And it also should make picking a more recent version easier.

The other dependencies are also updated, but are only used for testing.

New Contributors

• @konrad-ohms made their first contribution in #21

Full Changelog: pem-keystore-2.2.2...pem-keystore-2.3.0

This release fixes two possible NullPointerExcptions in the case of a misconfigured alias.

Thanks to a PR from @blagerweij, you can now also load certificates using classpath: prefix.

This updates a few versions and fixes a Java 11 build bug.

This adds support for private keys, using Let's encrypt.

It also adds the capability to have mutable keystores, although persisting them is not supported. This can be used for e.g .Tomcat which will modify the loaded keystores, but not save them back.

This is a major overhaul of the 1.0.0 version. It implements the processing of "private keys" as well as CA bundle certificates.

It is now possible to simply drop this is and e.g. encrypt based on Let's Encrypt certbot or OpenShift service certificates.