Skip to content

Releases: Sphereon-Opensource/PEX

const boolean support in filters and optional field support in Fields

24 Apr 20:52
Compare
Choose a tag to compare
  • Updated:
    • Allow to use const boolean in filters.
    • Allow to use 'optional' boolean in V2 Fields object. Please be aware we do not take that value into account yet.
      We just added the field, so it doesn't fail validation
    • Update to PEX models 2.2.4

Performance improvement and jwt_vp_json

29 Feb 22:36
Compare
Choose a tag to compare
  • Added:
    • Significant performance improvement: Add cache for AJV field validation as the operation is expensive and can be
      called multiple times. The improvement is in the order of 10 times or higher especially when larger definitions
      are encountered
    • Expose jwt_vp_json format
  • Updated:
    • Update to PEX models 2.2.2

DataIntegrity Proof, AnonCreds 2023 support

05 Feb 19:58
Compare
Choose a tag to compare
  • Added:
    Support for Data Integrity Proofs, using Anoncreds 2023 format.

Initial support for SD-JWT

14 Jan 01:44
Compare
Choose a tag to compare
  • Added:
    • Initial support for Selective Disclosure JWTs (SD-JWT). API is mostly the same, but to be sure we released it as a
      new major version
  • Updated:
    • Update to latest pex-models, containing some definition updates
  • Fixed:
    • Fix evaluation rule All when there are no marked input descriptors

No changes, updated deps

28 Sep 01:02
Compare
Choose a tag to compare

No changes except from some updated dependencies

Bugfix release, changing some core assumptions

10 Jul 15:34
Compare
Choose a tag to compare

IMPORTANT: This release moves to @astronautlabs/jsonpathplus in favor of jsonpathplus, bringing a security improvement.
As such you may need to update your dependencies in case you have a more strict dependency manager like pnpm.

  • Changed:

    • Move to @astronautlabs/jsonpathplus for improved Jsonpath security, whilst working on a permanent
      fix. (#110)
  • Fixed:

    • Move to build-time compilation of schema's using AJV, instead of runtime. Fixes an issue with the Hermes engine in
      React-Native, next to bringing execution
      optimizations. (#118)
    • Add name property to field objects included in @sphereon/pex-models
      2.0.3. (#123)
    • Invalid name used in matches from selection
      results. (#117)
    • Fixed pick and count behaviour matching against all credentials instead of per input
      descriptor (#115)
    • Fixed matching logic because of wrong assumptions. Previously all credentials were matched against all input
      descriptors, now a match per input descriptor suffices, as long as all input descriptors have
      matches. (#114
      and #113)

New major release; better OID4VP support

30 Apr 19:45
Compare
Choose a tag to compare

WARNING: This release has several breaking changes.

Although we envision a V3 release, with some major refactoring and full support for V2 of the PE spec, this version
should be more usable in OpenID4VP scenario's and incorporates many fixes. As such we urge people to upgrade from V1 to
V2 of the library.

Refactored external methods. They now all have optional objects as argument. Fixing future extensibility and ordering of
arguments.
Added support for PEX models v2, fixing model/interface names for typescript reserved words. Added options which are
handy in OpenID4VP scenario's, like having separate presentation submissions, filtering on DIDs and Formats not denoted
in the specification etc.

  • Added:

    • Allow to have an external presentation submission not part of the VP, especially handy in OpenID4VP use cases
    • Allow to filter against Verifiable Credential Formats, defined outside of a definition. This is handy for instance
      when OpenID4VP Relying Parties signal support for certain formats in their OpenID4VP metadata, but do not
      necessarily incorporate these in their definition(s).
    • Allow to filter against DID methods, defined outside of a definition. This is handy for instance when OpenID4VP
      Relying Parties signal support for certain DID methods in their OpenID4VP metadata, but do not necessarily
      incorporate these in their definition(s).
    • Matching of schema strings against the type property in a VC for V1, as this is being used in the wild
    • Allow issuance object to be present in a definition as it is being used in the wild
  • Removed:

    • definitions of ssi-types (lib/types/SSI.types.ts)
  • Changed:

    • Changed optional arguments to use objects, see the upgrade section of
      the README
    • presentationFrom and verifiablePresentationFrom methods now return an object instead of the presentation
      directly. see the upgrade section of the README
    • Certain non-state related methods have moved to static methods in the PEX class
    • method signatures are using common types from @sphereon/ssi-types
    • Credential Mapper from @sphereon/ssi-types is now used to create internal uniform VPs/VCs
    • Relax AJV errors
  • Fixed:

    • No more need for _const and _enum models/properties in presentation definitions. They are now const and enum (
      fixed in OpenAPI model generation)
    • Set the format based on detection of the format instead of hard-coding it in the descriptor
    • Match subject is issuer against all subjects of a VC if present (not common)

Add async callback for signing

17 Feb 20:56
Compare
Choose a tag to compare

Add async callback for signing

  • Updates:
    • The sign callback now supports both a synchronous and asynchronous callback, thanks to @TimoGlastra from our friends at @animo
    • Update dependencies

Relax V1 schema URI handling

10 Jan 02:16
Compare
Choose a tag to compare

Relax V1 schema URI handling

  • Updates:
    • Relax V1 schema URI handling. Previously we required the URI to be an actual URI, but in the wild the URI is also used as a regular string. We now support that as well. In case we detect a http based URI we will perform some additional checks.

Update dependencies

26 Oct 21:45
Compare
Choose a tag to compare
  • Updates:
    • Update dependencies