v0.3.8

This bumps x/crypto to 0.31.0 to resolve CVE-2024-45337. The API has not changed, which means there are still a number of ways you could be vulnerable if your code improperly uses the PublicKeyHandler.

Note that this may result in a performance regression, as the PublicKeyHandler may be called multiple times for the same key. The last time it is called will be the key the user is actually using.

Note that if you are using Permissions to pass information about the public key out of the handler, you need to make sure you always overwrite all relevant stored map keys in order to avoid being vulnerable.

Full Changelog: v0.3.7...v0.3.8

v0.3.7

What's Changed

• feat: allow to set a server banner by @caarlos0 in #221
• fix: remove ioutil deprecations by @aymanbagabas in #222
• fix: bannerhandler by @gustavosbarreto in #227

New Contributors

• @aymanbagabas made their first contribution in #222

Full Changelog: v0.3.6...v0.3.7

v0.2.2: Merge pull request #110 from gliderlabs/belak/raw-cmd

• Add Session.RawCommand()

v0.2.1

• Fix ForwardedTCPHandler by switching to a pointer receiver
• Rename DefaultServerConfigCallback to ServerConfigCallback

v0.2.0

• Make ChannelHandlers configurable
• Make RequestHandlers configurable
• Disable port forwarding by default

v0.1.4: Fix panic with missing request handler

• Fix panic with missing request handler

v0.1.3

Small release which adds a method of changing the internal SSH config

v0.1.2

This is a cut of master that includes reverse port forwarding.

v0.1.1

There were too many changes to list them in a short changelog, but the main reason for this release is so users working with dep or vgo can use a version which works with the latest x/crypto/ssh version.

v0.1.0

First cut of the library before we start potentially introducing breaking API changes. Releases will use semantic versioning, but right now we're pre-1.0. During this phase breaking API changes will represented in the minor version and is the only reason a release will happen.