deps: update dependency com.google.crypto.tink:tink to v1.16.0 #3562
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
trusted-contributions-gcf
bot
added
the
kokoro:force-run
kokoro-team
removed
the
kokoro:force-run
renovate-bot
force-pushed
the
renovate/com.google.crypto.tink.version
branch
from
99eed6f to
d652bdb
Compare
trusted-contributions-gcf
bot
added
the
kokoro:force-run
kokoro-team
removed
the
kokoro:force-run
trusted-contributions-gcf
bot
added
the
kokoro:force-run
kokoro-team
removed
the
kokoro:force-run
trusted-contributions-gcf
bot
added
the
kokoro:force-run
kokoro-team
removed
the
kokoro:force-run
|
/gcbrun |
diegomarquezp
approved these changes
Jan 23, 2025
lqiu96
pushed a commit
that referenced
this pull request
Feb 20, 2025
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [com.google.crypto.tink:tink](https://redirect.github.com/tink-crypto/tink-java) | `1.15.0` -> `1.16.0` | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | [](https://docs.renovatebot.com/merge-confidence/) | --- > [!WARNING] > Some dependencies could not be looked up. Check the Dependency Dashboard for more information. --- ### Release Notes <details> <summary>tink-crypto/tink-java (com.google.crypto.tink:tink)</summary> ### [`v1.16.0`](https://redirect.github.com/tink-crypto/tink-java/releases/tag/v1.16.0): Tink Java v1.16.0 [Compare Source](https://redirect.github.com/tink-crypto/tink-java/compare/v1.15.0...v1.16.0) Tink is a multi-language, cross-platform library that provides simple and misuse-proof APIs for common cryptographic tasks. **This is Tink Java 1.16.0** ### What's new The complete list of changes since 1.15.0 can be found [here](https://redirect.github.com/tink-crypto/tink-java/compare/1.15...1.16). - Added new API `AndroidKeystore`, which is now the preferred way to interact with the Android Keystore. - Before this release, the decision whether to use Conscrypt was done at time of class loading of some specific internal classes. If Conscrypt was not installed before the specific class for a primitive was loaded, Conscrypt was never used. Now, the decision is made whenever a new primitive is instantiated. - In HPKE, use Conscrypt implementation of `X25519` when available. On Android, it is available since API version 31. This makes HPKE both faster and uses less memory. - Updated deps: - protobuf (4.28.2) - Allow `@AccessesPartialKey` to be applied to fields and local variables, as well as methods and classes. - Added support for `X-AES-GCM`, which is an AEAD algorithm with extended nonce. It uses `AES-CMAC` for key derivation and `AES-GCM` for encryption. It is a generalization of the specification in https://c2sp.org/XAES-256-GCM. - Added configurations that allow specifying what key types are when using Tink in your application. Tink provides defaults (`ConfigurationV0`) that are backwards compatible with behavior before configs were introduced. ### Future work To see what we're working towards, check our [project roadmap](https://developers.google.com/tink/roadmap). ### Getting started To get started using Tink, see [the setup guide](https://developers.google.com/tink/tink-setup#java). ##### Maven: <dependency> <groupId>com.google.crypto.tink</groupId> <artifactId>tink</artifactId> <version>1.16.0</version> </dependency> ##### Gradle: dependencies { implementation 'com.google.crypto.tink:tink-android:1.16.0' } ##### Bazel: ```python load("@​bazel_tools//tools/build_defs/repo:http.bzl", "http_archive") RULES_JVM_EXTERNAL_TAG = "4.5" RULES_JVM_EXTERNAL_SHA ="b17d7388feb9bfa7f2fa09031b32707df529f26c91ab9e5d909eb1676badd9a6" http_archive( name = "rules_jvm_external", strip_prefix = "rules_jvm_external-%s" % RULES_JVM_EXTERNAL_TAG, sha256 = RULES_JVM_EXTERNAL_SHA, url = "https://github.com/bazelbuild/rules_jvm_external/archive/refs/tags/%s.zip" % RULES_JVM_EXTERNAL_TAG, ) load("@​rules_jvm_external//:repositories.bzl", "rules_jvm_external_deps") rules_jvm_external_deps() load("@​rules_jvm_external//:setup.bzl", "rules_jvm_external_setup") rules_jvm_external_setup() load("@​rules_jvm_external//:defs.bzl", "maven_install") maven_install( artifacts = [ "com.google.crypto.tink:tink:1.16.0", ### ... other dependencies ... ], repositories = [ "https://repo1.maven.org/maven2", ], ) ``` Alternatively, one can build Tink from source, and include it with `http_archive`: ```python http_archive( name = "com_github_tink_crypto_tink_java", urls = ["https://github.com/tink-crypto/tink-java/archive/refs/tags/v1.16.0.zip"], strip_prefix = "tink-java-1.16.0", sha256 = ... ) load("@​tink_java//:tink_java_deps.bzl", "TINK_MAVEN_ARTIFACTS", "tink_java_deps") tink_java_deps() load("@​tink_java//:tink_java_deps_init.bzl", "tink_java_deps_init") tink_java_deps_init() ### ... maven_install( artifacts = TINK_MAVEN_ARTIFACTS + # ... other dependencies ... repositories = [ "https://repo1.maven.org/maven2", ], ) ``` </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/googleapis/sdk-platform-java). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS45Mi4wIiwidXBkYXRlZEluVmVyIjoiMzkuMTA3LjAiLCJ0YXJnZXRCcmFuY2giOiJtYWluIiwibGFiZWxzIjpbXX0=-->
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
1.15.0->1.16.0Warning
Some dependencies could not be looked up. Check the Dependency Dashboard for more information.
Release Notes
tink-crypto/tink-java (com.google.crypto.tink:tink)
v1.16.0: Tink Java v1.16.0Compare Source
Tink is a multi-language, cross-platform library that provides simple and misuse-proof APIs for common cryptographic tasks.
This is Tink Java 1.16.0
What's new
The complete list of changes since 1.15.0 can be found here.
AndroidKeystore, which is now the preferred way to interact with the Android Keystore.X25519when available. On Android, it is available since API version 31. This makes HPKE both faster and uses less memory.@AccessesPartialKeyto be applied to fields and local variables, as well as methods and classes.X-AES-GCM, which is an AEAD algorithm with extended nonce. It usesAES-CMACfor key derivation andAES-GCMfor encryption. It is a generalization of the specification in https://c2sp.org/XAES-256-GCM.ConfigurationV0) that are backwards compatible with behavior before configs were introduced.Future work
To see what we're working towards, check our project roadmap.
Getting started
To get started using Tink, see the setup guide.
Maven:
Gradle:
Bazel:
Alternatively, one can build Tink from source, and include it with
http_archive:Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR was generated by Mend Renovate. View the repository job log.