deps: update dependency com.google.crypto.tink:tink to v1.15.0 (#3152)

renovate-bot · web-flow · commit 9e23439ce492 · 2024-09-03T15:44:17.000-04:00
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [com.google.crypto.tink:tink](https://redirect.github.com/tink-crypto/tink-java) | `1.14.1` -> `1.15.0` | [![age](https://developer.mend.io/api/mc/badges/age/maven/com.google.crypto.tink:tink/1.15.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://developer.mend.io/api/mc/badges/adoption/maven/com.google.crypto.tink:tink/1.15.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![passing](https://developer.mend.io/api/mc/badges/compatibility/maven/com.google.crypto.tink:tink/1.14.1/1.15.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![confidence](https://developer.mend.io/api/mc/badges/confidence/maven/com.google.crypto.tink:tink/1.14.1/1.15.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) | --- > [!WARNING] > Some dependencies could not be looked up. Check the Dependency Dashboard for more information. --- ### Release Notes <details> <summary>tink-crypto/tink-java (com.google.crypto.tink:tink)</summary> ### [`v1.15.0`](https://redirect.github.com/tink-crypto/tink-java/releases/tag/v1.15.0): Tink Java v1.15.0 [Compare Source](https://redirect.github.com/tink-crypto/tink-java/compare/v1.14.1...v1.15.0) Tink is a multi-language, cross-platform library that provides simple and misuse-proof APIs for common cryptographic tasks. **This is Tink Java 1.15.0** To get started using Tink, see [the setup guide](https://developers.google.com/tink/tink-setup#java). ### What's new? - Use Conscrypt to verify RSA SSA PKCS1 signatures if it is available. This fixes a bug when Tink is used in FIPS-only mode and when using `ConfigurationFips140v2`. - Use Conscrypt for RSA SSA PSS signatures if it is available. RSA SSA PSS is now available when Tink is used in FIPS-only mode and when using `ConfigurationFips140v2`. - `RsaSsaPssSignJce` and `RsaSsaPssVerifyJce` now throw an exception if `sigHash` and `mgf1Hash` are not equal. This makes these functions consistent with the non-subtle API and with other languages. - Removed `AeadOrDaead` and `EciesAeadHkdfDemHelper` from subtle API. These were internal helper classes for hybrid encryption that are not needed anymore. - Upgraded `tink-android`'s `androidx.annotation` dependency to `v1.8.2`. ### Future work To see what we're working towards, check our [project roadmap](https://developers.google.com/tink/roadmap). ### Getting started ##### Maven: <dependency> <groupId>com.google.crypto.tink</groupId> <artifactId>tink</artifactId> <version>1.15.0</version> </dependency> ##### Gradle: dependencies { implementation 'com.google.crypto.tink:tink-android:1.15.0' } #### Bazel: The recommended way to use tink-java is as a Maven dependency through `rules_jvm_external`. ```python load("@&#8203;bazel_tools//tools/build_defs/repo:http.bzl", "http_archive") RULES_JVM_EXTERNAL_TAG = "6.1" RULES_JVM_EXTERNAL_SHA ="d31e369b854322ca5098ea12c69d7175ded971435e55c18dd9dd5f29cc5249ac" http_archive( name = "rules_jvm_external", strip_prefix = "rules_jvm_external-%s" % RULES_JVM_EXTERNAL_TAG, sha256 = RULES_JVM_EXTERNAL_SHA, url = "https://github.com/bazelbuild/rules_jvm_external/releases/download/%s/rules_jvm_external-%s.tar.gz" % (RULES_JVM_EXTERNAL_TAG, RULES_JVM_EXTERNAL_TAG) ) load("@&#8203;rules_jvm_external//:repositories.bzl", "rules_jvm_external_deps") rules_jvm_external_deps() load("@&#8203;rules_jvm_external//:setup.bzl", "rules_jvm_external_setup") rules_jvm_external_setup() maven_install( artifacts = [ "com.google.crypto.tink:tink:1.15.0", ### ... other dependencies ... ], repositories = [ "https://repo1.maven.org/maven2", ], ) ``` Alternatively, one can build Tink from source and include it with `http_archive`: ```python http_archive( name = "tink_java", urls = ["https://github.com/tink-crypto/tink-java/releases/download/v1.15.0/tink-java-1.15.0.zip"], strip_prefix = "tink-java-1.15.0", sha256 = "e246f848f7749e37f558955ecb50345b04d79ddb9d8d1e8ae19f61e8de530582" ) load("@&#8203;tink_java//:tink_java_deps.bzl", "TINK_MAVEN_ARTIFACTS", "tink_java_deps") tink_java_deps() load("@&#8203;tink_java//:tink_java_deps_init.bzl", "tink_java_deps_init") tink_java_deps_init() ### ... maven_install( artifacts = TINK_MAVEN_ARTIFACTS + # ... other dependencies ... repositories = [ "https://repo1.maven.org/maven2", ], ) ``` </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/googleapis/sdk-platform-java).
diff --git a/java-shared-dependencies/third-party-dependencies/pom.xml b/java-shared-dependencies/third-party-dependencies/pom.xml
@@ -42,7 +42,7 @@
     <flogger.version>0.8</flogger.version>
     <arrow.version>15.0.2</arrow.version>
     <dev.cel.version>0.7.1</dev.cel.version>
-    <com.google.crypto.tink.version>1.14.1</com.google.crypto.tink.version>
+    <com.google.crypto.tink.version>1.15.0</com.google.crypto.tink.version>
   </properties>
 
   <dependencyManagement>
