Sourced from github.com/coreos/go-oidc/v3's releases.

v3.17.0

What's Changed

• oidc: improve error message for mismatched issuer URLs by @​ericchiang in coreos/go-oidc#469

Full Changelog: https://github.com/coreos/go-oidc/compare/v3.16.0...v3.17.0

v3.16.0

What's Changed

• refactor: Remove unused time injection from RemoteKeySet by @​ponimas in coreos/go-oidc#466
• bump go to 1.24, remove 1.23 support, bump go-jose dependency, remove x/net dependency by @​wardviaene in coreos/go-oidc#467

New Contributors

• @​wardviaene made their first contribution in coreos/go-oidc#467

Full Changelog: https://github.com/coreos/go-oidc/compare/v3.15.0...v3.16.0

v3.15.0

What's Changed

• oidc: verify the ID Token's signature before processing claims by @​ericchiang in coreos/go-oidc#464

Full Changelog: https://github.com/coreos/go-oidc/compare/v3.14.1...v3.15.0

v3.14.1

What's Changed

• oidctest: fix import by @​ericchiang in coreos/go-oidc#457

Full Changelog: https://github.com/coreos/go-oidc/compare/v3.14.0...v3.14.1

v3.14.0

What's Changed

• oidc/oidctest: add new package by @​ericchiang in coreos/go-oidc#400

Full Changelog: https://github.com/coreos/go-oidc/compare/v3.13.0...v3.14.0

v3.13.0

What's Changed

• *: bump dependency versions by @​ericchiang in coreos/go-oidc#453

Full Changelog: https://github.com/coreos/go-oidc/compare/v3.12.0...v3.13.0

v3.12.0

What's Changed

• oidc: add JSON tags to ProviderConfig by @​ericchiang in coreos/go-oidc#446

... (truncated)

• 35b8e03 oidc: improve error message for mismatched issuer URLs
• e958473 bump go to 1.24, remove 1.23 support, bump go-jose dependency, remove x/net d...
• 69b1670 refactor: Remove unused time injection from RemoteKeySet
• 8d1e57e oidc: verify the ID Token's signature before processing claims
• a7c457e oidctest: fix import
• aba1ce2 oidc/oidctest: add new package
• 60d436e *: bump dependency versions
• 4b5f82d oidc: add JSON tags to ProviderConfig
• 0fe9887 oidc: ignore cancellation of remote key set context
• 308e778 chore(deps): bump dependencies to address security issues
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)