Bump github.com/hashicorp/vault/api from 1.6.0 to 1.7.1

[dependabot]

Bumps github.com/hashicorp/vault/api from 1.6.0 to 1.7.1.

Release notes

Sourced from github.com/hashicorp/vault/api's releases.

v1.7.1

Release vault 1.7.1

v1.7.0

1.7.0

24 March 2021

CHANGES:

• go: Update go version to 1.15.8 [GH-11060]

FEATURES:

• Aerospike Storage Backend: Add support for using Aerospike as a storage backend [GH-10131]
• agent: Support for persisting the agent cache to disk [GH-10938]
• auth/jwt: Adds max_age role parameter and auth_time claim validation. [GH-10919]
• kmip (enterprise): Use entropy augmentation to generate kmip certificates
• sdk: Private key generation in the certutil package now allows custom io.Readers to be used. [GH-10653]
• secrets/aws: add IAM tagging support for iam_user roles [GH-10953]
• secrets/database/cassandra: Add ability to customize dynamic usernames [GH-10906]
• secrets/database/couchbase: Add ability to customize dynamic usernames [GH-10995]
• secrets/database/mongodb: Add ability to customize dynamic usernames [GH-10858]
• secrets/database/mssql: Add ability to customize dynamic usernames [GH-10767]
• secrets/database/mysql: Add ability to customize dynamic usernames [GH-10834]
• secrets/database/postgresql: Add ability to customize dynamic usernames [GH-10766]
• secrets/openldap: Added dynamic roles to OpenLDAP similar to the combined database engine [GH-10996]
• secrets/terraform: New secret engine for managing Terraform Cloud API tokens [GH-10931]
• ui: Adds check for feature flag on application, and updates namespace toolbar on login if present [GH-10588]
• ui: Adds the wizard to the Database Secret Engine [GH-10982]
• ui: Database secrets engine, supporting MongoDB only [GH-10655]

IMPROVEMENTS:

• agent: Add template-retry stanza to agent config. [GH-10644]
• agent: Agent can now run as a Windows service. [GH-10231]
• agent: Better concurrent request handling on identical requests proxied through Agent. [GH-10705]
• agent: Route templating server through cache when persistent cache is enabled. [GH-10927]
• agent: change auto-auth to preload an existing token on start [GH-10850]
• auth/ldap: Improve consistency in error messages [GH-10537]
• auth/okta: Adds support for Okta Verify TOTP MFA. [GH-10942]
• changelog: Add dependencies listed in dependencies/2-25-21 [GH-11015]
• command/debug: Now collects logs (at level trace) as a periodic output. [GH-10609]
• core (enterprise): "vault status" command works when a namespace is set. [GH-10725]
• core (enterprise): Update Trial Enterprise license from 30 minutes to 6 hours
• core/metrics: Added "vault operator usage" command. [GH-10365]
• core/metrics: New telemetry metrics reporting lease expirations by time interval and namespace [GH-10375]
• core: Added active since timestamp to the status output of active nodes. [GH-10489]
• core: Check audit device with a test message before adding it. [GH-10520]
• core: Track barrier encryption count and automatically rotate after a large number of operations or on a schedule [GH-10744]
• core: add metrics for active entity count [GH-10514]

... (truncated)

Changelog

Sourced from github.com/hashicorp/vault/api's changelog.

1.7.10

March 3, 2022

BUG FIXES:

• database/mssql: Removed string interpolation on internal queries and replaced them with inline queries using named parameters. [GH-13799]
• ui: Fix issue removing raft storage peer via cli not reflected in UI until refresh [GH-13098]
• ui: Trigger background token self-renewal if inactive and half of TTL has passed [GH-13950]

1.7.9

January 27, 2022

IMPROVEMENTS:

• core: Fixes code scanning alerts [GH-13667]

BUG FIXES:

• auth/oidc: Fixes OIDC auth from the Vault UI when using the implicit flow and form_post response mode. [GH-13493]
• secrets/gcp: Fixes role bindings for BigQuery dataset resources. [GH-13735]
• ui: Fixes breadcrumb bug for secrets navigation [GH-13604]
• ui: Fixes issue saving KMIP role correctly [GH-13585]

1.7.8

December 21, 2021

CHANGES:

• go: Update go version to 1.16.12 [GH-13422]

BUG FIXES:

• auth/aws: Fixes ec2 login no longer supporting DSA signature verification [GH-12340]
• identity: Fix a panic on arm64 platform when doing identity I/O. [GH-12371]

1.7.7

December 9, 2021

SECURITY:

• storage/raft: Integrated Storage backend could be caused to crash by an authenticated user with write permissions to the KV secrets engine. This vulnerability, CVE-2021-45042, was fixed in Vault 1.7.7, 1.8.6, and 1.9.1.

BUG FIXES:

• ha (enterprise): Prevents performance standby nodes from serving and caching stale data immediately after performance standby election completes
• storage/raft: Fix a panic when trying to store a key > 32KB in a transaction. [GH-13286]
• storage/raft: Fix a panic when trying to write a key > 32KB [GH-13282]
• ui: Fixes issue restoring raft storage snapshot [GH-13107]
• ui: Fixes issue with OIDC auth workflow when using MetaMask Chrome extension [GH-13133]
• ui: Fixes issue with the number of PGP Key inputs not matching the key shares number in the initialization form on change [GH-13038]

... (truncated)

Commits

• 9171422 core/token: fix panic looking up invalid batch tokens (#11415) (#11417)
• 6977c11 stage: update GO_VERSION_MIN and sdk dep (#11414)
• b296e15 Make cubbyhole revocation/tidying compatible with cubbys in namespaces. (#114...
• 8f371c3 Backport 1.7.1: Add root rotation statements support to database secret engin...
• 0739917 Add support for unauthenticated pprof access on a per-listener basis,… (#1132...
• 224e04e Cassandra DB plugin: Allow special chars in usernames (#11262) (#11385)
• 9c9675f Backport (1.7.x): Validate hostnames when using TLS in Cassandra #11365 (#11390)
• af3f8c4 Update to Go 1.15.11 (#11395)
• 3144d8f pki: fix tidy removal on revoked entries (#11367) (#11400)
• 7f6a5e3 Updates the JWT/OIDC auth plugin to v0.9.3 (#11388) (#11399)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[cloudflare-workers-and-pages]

Deploying with    Cloudflare Pages

Latest commit:	e3b4d5e
Status:	✅  Deploy successful!
Preview URL:	https://ea993c52.vaku.pages.dev
Branch Preview URL:	https://dependabot-go-modules-github-om5b.vaku.pages.dev

View logs