Yubico
diff --git a/‎.github/workflows/build.yml‎
Lines changed: 8 additions & 8 deletions b/‎.github/workflows/build.yml‎
Lines changed: 8 additions & 8 deletions
diff --git a/‎.github/workflows/code-formatting.yml‎
Lines changed: 2 additions & 2 deletions b/‎.github/workflows/code-formatting.yml‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎.github/workflows/codeql-analysis.yml‎
Lines changed: 4 additions & 4 deletions b/‎.github/workflows/codeql-analysis.yml‎
Lines changed: 4 additions & 4 deletions
diff --git a/‎.github/workflows/coverage.yml‎
Lines changed: 4 additions & 4 deletions b/‎.github/workflows/coverage.yml‎
Lines changed: 4 additions & 4 deletions
diff --git a/‎.github/workflows/integration-test.yml‎
Lines changed: 4 additions & 4 deletions b/‎.github/workflows/integration-test.yml‎
Lines changed: 4 additions & 4 deletions
diff --git a/‎.github/workflows/release-verify-signatures.yml‎
Lines changed: 5 additions & 5 deletions b/‎.github/workflows/release-verify-signatures.yml‎
Lines changed: 5 additions & 5 deletions
diff --git a/‎NEWS‎
Lines changed: 52 additions & 0 deletions b/‎NEWS‎
Lines changed: 52 additions & 0 deletions
@@ -33,10 +33,10 @@ jobs:
 
     steps:
     - name: Check out code
-      uses: actions/checkout@v4
+      uses: actions/checkout@v6
 
     - name: Set up JDK 17
-      uses: actions/setup-java@v4
+      uses: actions/setup-java@v5
       with:
         java-version: 17
         distribution: ${{ matrix.distribution }}
@@ -45,7 +45,7 @@ jobs:
       run: ./gradlew clean testClasses
 
     - name: Set up JDK ${{ matrix.java }}
-      uses: actions/setup-java@v4
+      uses: actions/setup-java@v5
       with:
         java-version: ${{ matrix.java }}
         distribution: ${{ matrix.distribution }}
@@ -55,7 +55,7 @@ jobs:
 
     - name: Archive HTML test report on failure
       if: ${{ failure() }}
-      uses: actions/upload-artifact@v4
+      uses: actions/upload-artifact@v5
       with:
         name: test-reports-java17-java${{ matrix.java }}-${{ matrix.distribution }}-html
         path: "*/build/reports/**"
@@ -68,14 +68,14 @@ jobs:
 
     - name: Archive HTML test report
       if: ${{ always() }}
-      uses: actions/upload-artifact@v4
+      uses: actions/upload-artifact@v5
       with:
         name: test-reports-java${{ matrix.java }}-${{ matrix.distribution }}-html
         path: "*/build/reports/**"
 
     - name: Archive JUnit test report
       if: ${{ always() }}
-      uses: actions/upload-artifact@v4
+      uses: actions/upload-artifact@v5
       with:
         name: test-reports-java${{ matrix.java }}-${{ matrix.distribution }}-xml
         path: "*/build/test-results/**/*.xml"
@@ -90,7 +90,7 @@ jobs:
 
     - name: Archive artifact checksums
       if: ${{ matrix.java != 8 }}  # JDK 8 does not produce reproducible binaries
-      uses: actions/upload-artifact@v4
+      uses: actions/upload-artifact@v5
       with:
         name: artifact-checksums-java${{ matrix.java }}-${{ matrix.distribution }}
         path: java-webauthn-server-artifacts.sha256sum
@@ -107,7 +107,7 @@ jobs:
 
     steps:
     - name: Download artifacts
-      uses: actions/download-artifact@v4
+      uses: actions/download-artifact@v6
       with:
         name: test-reports-java${{ needs.test.outputs.report-java }}-${{ needs.test.outputs.report-dist }}-xml
 
 
@@ -21,10 +21,10 @@ jobs:
 
     steps:
     - name: Check out code
-      uses: actions/checkout@v4
+      uses: actions/checkout@v6
 
     - name: Set up JDK
-      uses: actions/setup-java@v4
+      uses: actions/setup-java@v5
       with:
         java-version: ${{ matrix.java }}
         distribution: ${{ matrix.distribution }}
 
@@ -21,16 +21,16 @@ jobs:
 
     steps:
     - name: Checkout repository
-      uses: actions/checkout@v4
+      uses: actions/checkout@v6
 
-    - uses: actions/setup-java@v4
+    - uses: actions/setup-java@v5
       with:
         java-version: 17
         distribution: temurin
 
     # Initializes the CodeQL tools for scanning.
     - name: Initialize CodeQL
-      uses: github/codeql-action/init@v3
+      uses: github/codeql-action/init@v4
       with:
         languages: java
 
@@ -39,4 +39,4 @@ jobs:
         ./gradlew jar
 
     - name: Perform CodeQL Analysis
-      uses: github/codeql-action/analyze@v3
+      uses: github/codeql-action/analyze@v4
@@ -19,10 +19,10 @@ jobs:
 
     steps:
     - name: Check out code
-      uses: actions/checkout@v4
+      uses: actions/checkout@v6
 
     - name: Set up JDK
-      uses: actions/setup-java@v4
+      uses: actions/setup-java@v5
       with:
         java-version: 17
         distribution: temurin
@@ -31,7 +31,7 @@ jobs:
       run: ./gradlew pitestMerge
 
     - name: Archive test reports
-      uses: actions/upload-artifact@v4
+      uses: actions/upload-artifact@v5
       with:
         name: pitest-reports-${{ github.sha }}
         path: "*/build/reports/pitest/**"
@@ -48,7 +48,7 @@ jobs:
         sed "s/{shortcommit}/${GITHUB_SHA:0:8}/g;s/{commit}/${GITHUB_SHA}/g;s#{repo}#${GITHUB_SERVER_URL}/${GITHUB_REPOSITORY}#g" .github/workflows/coverage/index.html.template > build/gh-pages/index.html
 
     - name: Check out GitHub Pages branch
-      uses: actions/checkout@v4
+      uses: actions/checkout@v6
       with:
         ref: gh-pages
         clean: false
 
@@ -26,10 +26,10 @@ jobs:
 
     steps:
     - name: Check out code
-      uses: actions/checkout@v4
+      uses: actions/checkout@v6
 
     - name: Set up JDK ${{ matrix.java }}
-      uses: actions/setup-java@v4
+      uses: actions/setup-java@v5
       with:
         java-version: ${{ matrix.java }}
         distribution: ${{ matrix.distribution }}
@@ -39,14 +39,14 @@ jobs:
 
     - name: Archive HTML test report
       if: ${{ always() }}
-      uses: actions/upload-artifact@v4
+      uses: actions/upload-artifact@v5
       with:
         name: test-reports-java${{ matrix.java }}-${{ matrix.distribution }}-html
         path: "*/build/reports/**"
 
     - name: Archive JUnit test report
       if: ${{ always() }}
-      uses: actions/upload-artifact@v4
+      uses: actions/upload-artifact@v5
       with:
         name: test-reports-java${{ matrix.java }}-${{ matrix.distribution }}-xml
         path: "*/build/test-results/**/*.xml"
@@ -24,7 +24,7 @@ jobs:
         until wget https://repo1.maven.org/maven2/com/yubico/webauthn-server-core/${{ github.ref_name }}/webauthn-server-core-${{ github.ref_name }}.jar.asc; do sleep 180; done
 
     - name: Store keyring and signatures as artifact
-      uses: actions/upload-artifact@v4
+      uses: actions/upload-artifact@v5
       with:
         name: keyring-and-signatures
         retention-days: 1
@@ -44,12 +44,12 @@ jobs:
 
     steps:
     - name: check out code
-      uses: actions/checkout@v4
+      uses: actions/checkout@v6
       with:
         ref: ${{ github.ref_name }}
 
     - name: Set up JDK
-      uses: actions/setup-java@v4
+      uses: actions/setup-java@v5
       with:
         java-version: ${{ matrix.java }}
         distribution: ${{ matrix.distribution }}
@@ -68,7 +68,7 @@ jobs:
         done
 
     - name: Retrieve keyring and signatures
-      uses: actions/download-artifact@v4
+      uses: actions/download-artifact@v6
       with:
         name: keyring-and-signatures
 
@@ -87,7 +87,7 @@ jobs:
 
     steps:
     - name: Retrieve signatures
-      uses: actions/download-artifact@v4
+      uses: actions/download-artifact@v6
       with:
         name: keyring-and-signatures
 
 
@@ -1,3 +1,55 @@
+== Version 2.8.0 ==
+
+`webauthn-server-core`:
+
+New features:
+
+* Added JavaDoc to `COSEAlgorithmIdentifier` constants.
+* Added support for Ed448 signatures.
+* New constants `COSEAlgorithmIdentifier.Ed25519`,
+  `COSEAlgorithmIdentifier.Ed448` and `PublicKeyCredentialParameters.Ed448`
+* (Experimental) Added a new suite of interfaces, starting with
+  `CredentialRepositoryV2`. `RelyingParty` can now be configured with a
+  `CredentialRepositoryV2` instance instead of a `CredentialRepository`
+  instance. This changes the result of the `RelyingParty` builder to
+  `RelyingPartyV2`. `CredentialRepositoryV2` and `RelyingPartyV2` enable a suite
+  of new features:
+ ** `CredentialRepositoryV2` does not assume that the application has usernames,
+    instead username support is modular. In addition to the
+    `CredentialRepositoryV2`, `RelyingPartyV2` can be optionally configured with
+    a `UsernameRepository` as well. If a `UsernameRepository` is not set, then
+    `RelyingPartyV2.startAssertion(StartAssertionOptions)` will fail at runtime
+    if `StartAssertionOptions.username` is set.
+ ** `CredentialRepositoryV2` uses a new interface `CredentialRecord` to
+    represent registered credentials, instead of the concrete
+    `RegisteredCredential` class (although `RegisteredCredential` also
+    implements `CredentialRecord`). This provides implementations greater
+    flexibility while also automating the type conversion to
+    `PublicKeyCredentialDescriptor` needed in `startRegistration()` and
+    `startAssertion()`.
+ ** `RelyingPartyV2.finishAssertion()` returns a new type `AssertionResultV2`
+    with a new method `getCredential()`, which returns the `CredentialRecord`
+    that was verified. The return type of `getCredential()` is generic and
+    preserves the concrete type of `CredentialRecord` returned by the
+    `CredentialRepositoryV2` implementation.
+ ** NOTE: Experimental features may receive breaking changes without a major
+    version increase.
+* (Experimental) Added property `RegisteredCredential.transports`.
+ ** NOTE: Experimental features may receive breaking changes without a major
+    version increase.
+
+`webauthn-server-attestation`:
+
+New features:
+
+* Updated SupportedCtapOptions to version 2.2 of CTAP spec.
+ ** New field `perCredMgmtRO`
+
+Fixes:
+
+* Fixed parsing logic of tri-valued Boolean SupportedCtapOptions properties.
+  See: https://github.com/Yubico/java-webauthn-server/issues/382
+
 == Version 2.7.0 ==
 
 New features: