Commit graph

628 commits

Author SHA1 Message Date
dependabot[bot]
4fb0e4cfcd
Bump phonenumber from 0.3.2+8.13.9 to 0.3.3+8.13.9 (#323)
Bumps [phonenumber](https://github.com/whisperfish/rust-phonenumber)
from 0.3.2+8.13.9 to 0.3.3+8.13.9.
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/whisperfish/rust-phonenumber/commits">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=phonenumber&package-manager=cargo&previous-version=0.3.2+8.13.9&new-version=0.3.3+8.13.9)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/dyc3/steamguard-cli/network/alerts).

</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-22 10:04:11 -04:00
dependabot[bot]
e032008fdb
Bump webpki from 0.22.0 to 0.22.1 (#321)
Bumps [webpki](https://github.com/briansmith/webpki) from 0.22.0 to
0.22.1.
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/briansmith/webpki/commits">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=webpki&package-manager=cargo&previous-version=0.22.0&new-version=0.22.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/dyc3/steamguard-cli/network/alerts).

</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-13 10:29:08 -04:00
Carson McManus
5178238f8d Release steamguard v0.12.1, steamguard-cli v0.12.1 2023-09-13 10:20:59 -04:00
Carson McManus
90ba3b64b5 Bump steamguard v0.12.1, steamguard-cli v0.12.1 2023-09-13 10:17:20 -04:00
Carson McManus
14589e70d5
misc fixes for deb packaging (#315)
- change debian package arch to `amd64`
- change compression type for debian package to `xz`

fixes #314
2023-09-13 14:15:58 +00:00
Carson McManus
a9af82da13
fix how UserLogin handles access tokens for new api behavior, fixes #319 (#320)
fixes #319
2023-09-13 14:15:09 +00:00
Carson McManus
f952ed5b1b
remove normalize_comments rustfmt rule (#316) 2023-09-10 21:22:23 +00:00
Carson McManus
97a9040eb8 Release steamguard v0.12.0, steamguard-cli v0.12.0 2023-09-04 13:47:12 -04:00
Carson McManus
544608a330 Bump steamguard v0.12.0, steamguard-cli v0.12.0 2023-09-04 13:43:38 -04:00
Carson McManus
9f26e6b241 update version numbers 2023-09-04 13:43:05 -04:00
Carson McManus
2c63350bcf update release script 2023-09-04 13:39:27 -04:00
Carson McManus
29aca56067
adjust error message for when mobile confirmation fails (#311)
- adjust error message for when mobile confirmation fails
- update issue template
2023-09-04 17:10:30 +00:00
Carson McManus
f2821d2837 Release steamguard-cli v0.11.0 2023-08-23 17:41:18 -04:00
Carson McManus
84993dedae Bump steamguard-cli v0.11.0 2023-08-23 17:37:26 -04:00
Carson McManus
4348529ffd
import: add support for importing steam mobile app v2 format, remove --sda argument (#307)
- add account schema for steam app v2
- make it possible to import steam v2 accounts
- import: remove the `--sda` flag, the format should be detected
automatically
- add unit tests
- make it actually work

closes #305
2023-08-23 17:59:14 +00:00
dependabot[bot]
40d81f360b
Bump rustls-webpki from 0.100.1 to 0.100.2 (#306)
Bumps [rustls-webpki](https://github.com/rustls/webpki) from 0.100.1 to
0.100.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/rustls/webpki/releases">rustls-webpki's
releases</a>.</em></p>
<blockquote>
<h2>v/0.100.2</h2>
<h2>Release notes</h2>
<ul>
<li>certificate path building and verification is now capped at 100
signature validation operations to avoid the risk of CPU usage
denial-of-service attack when validating crafted certificate chains
producing quadratic runtime. This risk affected both clients, as well as
servers that verified client certificates.</li>
</ul>
<h2>What's Changed</h2>
<ul>
<li>v0.100.2 prep by <a
href="https://github.com/cpu"><code>@​cpu</code></a> in <a
href="https://redirect.github.com/rustls/webpki/pull/154">rustls/webpki#154</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/rustls/webpki/compare/v/0.100.1...v/0.100.2">https://github.com/rustls/webpki/compare/v/0.100.1...v/0.100.2</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="c8b821450b"><code>c8b8214</code></a>
Bump MSRV to 1.60</li>
<li><a
href="855752292e"><code>8557522</code></a>
Avoid testing MSRV of dev-dependencies</li>
<li><a
href="73a7f0c7d7"><code>73a7f0c</code></a>
Cargo: version 0.100.1 -&gt; 0.100.2</li>
<li><a
href="4ea052366f"><code>4ea0523</code></a>
verify_cert: enforce maximum number of signatures.</li>
<li>See full diff in <a
href="https://github.com/rustls/webpki/compare/v/0.100.1...v/0.100.2">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=rustls-webpki&package-manager=cargo&previous-version=0.100.1&new-version=0.100.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/dyc3/steamguard-cli/network/alerts).

</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-08-22 14:29:36 -04:00
Carson McManus
84f488a7bd Release steamguard v0.10.3, steamguard-cli v0.10.5 2023-08-10 09:20:29 -04:00
Carson McManus
34d17a2462 Bump steamguard v0.10.3, steamguard-cli v0.10.5 2023-08-10 09:15:11 -04:00
Carson McManus
e960b7cedc add a comment 2023-08-10 09:14:59 -04:00
Carson McManus
3957177709
ci: fix tests from steamguard crate not running in CI (#301) 2023-08-10 12:55:06 +00:00
Carson McManus
f0e66a4651
fix jwt decoding, fixes #299 (#300) 2023-08-10 12:49:37 +00:00
Carson McManus
94a7ca8bc8 Release steamguard-cli v0.10.4 2023-08-09 13:59:45 -04:00
Carson McManus
8bd0079ffc Bump steamguard-cli v0.10.4 2023-08-09 13:56:09 -04:00
Carson McManus
aa5168e663
fix manifest failing to save after migration on encrypted maFiles when providing passkey via the prompts on stdin (#297) 2023-08-09 17:40:58 +00:00
Carson McManus
28733e029d Release steamguard v0.10.2, steamguard-cli v0.10.3 2023-08-09 10:04:11 -04:00
Carson McManus
2114d0a98d Bump steamguard v0.10.2, steamguard-cli v0.10.3 2023-08-09 09:59:57 -04:00
Carson McManus
fff3427d8d fix a lint 2023-07-24 10:44:39 -04:00
Carson McManus
d7173b4efb
trade: automatically retry submitting confirmations (#294)
closes #293
2023-07-24 10:29:49 -04:00
Carson McManus
96f342137a
upgrade base64 crate to 0.21 (#289) 2023-07-10 15:41:36 +00:00
Carson McManus
d1ff150cbf
replace crates hmac-sha1 and hmac-sha256 with equivalent crates from RustCrypto (#288) 2023-07-10 14:53:31 +00:00
Carson McManus
9c6d10dc1f
import: improve error messages (#287) 2023-07-10 13:43:02 +00:00
Carson McManus
d31a1435c2 update release script 2023-07-09 11:09:08 -04:00
Carson McManus
e5b76fe4a4 Release steamguard v0.10.1, steamguard-cli v0.10.2 2023-07-09 11:07:38 -04:00
Carson McManus
942ac6f35f Bump steamguard v0.10.1, steamguard-cli v0.10.2 2023-07-09 11:07:25 -04:00
Carson McManus
e1a27e8b23 fix dependency thing 2023-07-09 11:07:02 -04:00
Carson McManus
eb51a7a2a7
improve robustness of account migrations (#284)
- add an extreme test case for migrations
- improve robustness of manifest migrations

fixes #283
2023-07-09 10:16:02 -04:00
Carson McManus
17d19c53c0 update readme 2023-07-07 07:25:00 -04:00
Carson McManus
7c985f62ff
zeroize more stuff during runtime (#282)
- add zeroize features to some dependencies
- zeroize protobuf messages when they are dropped
2023-07-05 14:25:03 +00:00
Carson McManus
df47ff1823
refactor passkey/password prompts so they are always SecretString (#281) 2023-07-05 12:35:32 +00:00
Carson McManus
d9261d0ac8 Release steamguard-cli v0.10.1 2023-07-05 07:03:54 -04:00
Carson McManus
b98cd2d4c7 Bump steamguard-cli v0.10.1 2023-07-05 06:59:44 -04:00
Carson McManus
3fdf2fdbc9
add an argument to accept invalid TLS certs (#279) 2023-07-05 10:58:08 +00:00
Carson McManus
7635e5ca10
add argument to specify proxy credentials (#278) 2023-07-05 10:49:17 +00:00
Carson McManus
a2b3f18d76
search directory that the executable is in for maFiles (#277)
closes #275
2023-07-05 10:28:13 +00:00
Carson McManus
d3b9471e95 update release script 2023-07-03 12:37:00 -04:00
Carson McManus
391371002b Release steamguard v0.10.0, steamguard-cli v0.10.0 2023-07-03 12:30:14 -04:00
Carson McManus
06af8c2219 Bump steamguard v0.10.0, steamguard-cli v0.10.0, safety bump steamguard-cli v0.10.0 2023-07-03 12:26:35 -04:00
Carson McManus
8f4ec79144
parallelize account loading and saving (#273)
- parallelize account loading
- parallelize account saving
2023-07-03 16:25:43 +00:00
Carson McManus
969baeed4c
upgrade some dependencies (#272)
- upgrade `rsa`, `zeroize` crates, closes #268
- switch to parrallelized pbkdf2, closes #271
- cargo update
2023-07-03 15:42:10 +00:00
Carson McManus
d5218d770e
add a new, faster encryption scheme (Argon2idAes256) and make it the default (#270)
- move legacy scheme to new module
- add argon2 crate
- mvoe test
- add argon2id aes encryption scheme
- refactor encryption to be less shit
- fix all the errors
- fix lints
2023-07-03 10:23:56 -04:00