Changelog for yubikey-manager-0.5.0-2.1.noarch.rpm :
Wed Jan 3 13:00:00 2018
- Version 0.5.0 (released 2017-12-15)
- API breaking changes:
- OATH: New API more similar to yubioath-android
- CLI breaking changes:
- OATH: Touch prompt now written to stderr instead of stdout
- OATH: -a|--algorithm option to list command removed
- OATH: Columns in code command are now dymanically spaced depending on contents
- OATH: delete command now requires confirmation or -f|--force argument
- OATH: IDs printed by list command now include TOTP period if not 30
- Changed outputs:
- INFO: \"Device name\" output changed to \"Device type\"
- PIV: \"Management key is stored on device\" output changed to \"Management key is stored on the YubiKey\"
- PIV: \"All PIV data have been cleared from the device\" output changed to \"All PIV data have been cleared from your YubiKey\"
- PIV: \"The current management key is stored on the device\" prompt changed to \"The current management key is stored on the YubiKey\"
- SLOT: \"blank to use device serial\" prompt changed to \"blank to use YubiKey serial number\"
- SLOT: \"Using device serial\" output changed to \"Using YubiKey device serial\"
- Lots of failure case outputs changed
- New features:
- Support for multiple devices via new top-level option -d|--device
- New top-level option -l|--log-level to enable logging
- OATH: Support for remembering passwords locally.
- OATH: New option -s|--single for code command
- PIV: set-pin-retries command now warns that PIN and PUK will be reset to factory defaults, and prints those defaults after resetting
- API bug fixes:
- OATH: valid_from and valid_to for Code are now absolute instead of relative to the credential period
- OATH: period for non-TOTP Code is now None

Wed Nov 15 13:00:00 2017
- Version 0.4.6 (released 2017-10-17)
- Will now attempt to open device 3 times before failing
- OpenPGP: Don’t say data is removed when not
- OpenPGP: Don’t swallow APDU errors
- PIV: Block on-chip RSA key generation for firmware versions 4.2.0 to 4.3.4 (inclusive) since these chips are vulnerable to CVE-2017-15631.
- Version 0.4.5 (released 2017-09-14)
- OATH: Don’t print issuer if there is no issuer.
- Version 0.4.4 (released 2017-09-06)
- OATH: Fix yet another issue with backwards compability, for adding new credentials.
- Version 0.4.3 (released 2017-09-06)
- OATH: Fix issue with backwards compability, when used as a library.
- Version 0.4.2 (released 2017-09-05)
- OATH: Support 7 digit credentials.
- OATH: Support credentials with a period other than 30 seconds.
- OATH: The remove command is now called delete.
- Version 0.4.1 (released 2017-08-10)
- PIV: Dropped support for deriving a management key from PIN.
- PIV: Addded support for generating a random management key and storing it on the device protected by the PIN.
- OpenPGP: The reset command now handles a device in terminated state.
- OATH: Credential filtering is now working properly on Python 2.
- Version 0.4.0 (released 2017-06-19)
- Added PIV support. The tool and library now supports most of the PIV functionality found on the YubiKey 4 and NEO. To list the available commands, run ykman piv -h.
- Mode command now supports adding and removing modes incrementally.

Mon May 15 14:00:00 2017
- Initial Release 0.3.3