Hi everyone,
I'm pleased to announce v0.6.0 of the Sequoia Policy Config crate, sequoia-policy-config.
I have published sequoia-policy-config on crates.io:
https://crates.io/crates/sequoia-policy-config
You can also fetch version 0.6.0 using the v0.6.0 tag:
https://gitlab.com/sequoia-pgp/sequoia-policy-config/-/tags/v0.6.0
which I signed:
$ git verify-tag v0.6.0 gpg: Signature made Mon Mar 06 15:11:44 2023 +01:00 gpg: using RSA key C03FA6411B03AE12576461187223B56678E02528 gpg: Good signature from "Neal H. Walfield neal@walfield.org" [ultimate] gpg: "Neal H. Walfield neal@gnupg.org" gpg: "Neal H. Walfield neal@pep-project.org" gpg: "Neal H. Walfield neal@pep.foundation" gpg: "Neal H. Walfield neal@sequoia-pgp.org"
This release adds a few new functions that make it easier to use an alternate configuration name space. In particular, `ConfiguredStandardPolicy::parse_default_config` was split into the following functions: `ConfiguredStandardPolicy::parse_env_config`, `ConfiguredStandardPolicy::parse_config_file`, and `ConfiguredStandardPolicy::parse_config`.
This was motivated by Fedora 38, which needs to enable some legacy algorithms to give third parties additional time to update their OpenPGP certificates. We decided that just because these algorithms are enabled for rpm does not mean that they should to be enabled for all applications that use Sequoia. The relevant issue is here:
https://bugzilla.redhat.com/show_bug.cgi?id=2170878
Neal on behalf of the whole Sequoia PGP team