Hi everyone,
I'm pleased to announce the release of version 0.30.1 of Sequoia sq, our general-purpose command-line tool for Sequoia PGP.
I have published sequoia-sq on crates.io:
https://crates.io/crates/sequoia-sq
You can also fetch version 0.30.1 using the v0.30.1 tag:
https://gitlab.com/sequoia-pgp/sequoia-sq/-/tags/v0.30.1
which I signed:
$ git verify-tag v0.30.1 gpg: Signature made Wed May 31 10:58:07 2023 +02:00 gpg: using RSA key C03FA6411B03AE12576461187223B56678E02528 gpg: Good signature from "Neal H. Walfield neal@walfield.org" [ultimate] gpg: "Neal H. Walfield neal@gnupg.org" gpg: "Neal H. Walfield neal@pep-project.org" gpg: "Neal H. Walfield neal@pep.foundation" gpg: "Neal H. Walfield neal@sequoia-pgp.org"
This release of sq was primarily motivated by the recently fixed, low-severity vulnerabilities in sequoia-openpgp, buffered-reader, and sequoia-autocrypt. More information is available here:
https://lists.sequoia-pgp.org/hyperkitty/list/announce@lists.sequoia-pgp.org... https://lists.sequoia-pgp.org/hyperkitty/list/announce@lists.sequoia-pgp.org...
All versions of sq are affected. We recommend upgrading to 0.30.1, or ensuring that the dependencies are up to date and recompiling:
$ cd ../sequoia-sq $ cargo update -p sequoia-openpgp $ cargo update -p buffered-reader $ cargo update -p sequoia-autocrypt $ cargo build --release
Neal on behalf of the whole Sequoia PGP team