Skip to content

v0.6.0
Compare
Choose a tag to compare
@jberkus jberkus released this 11 Jul 21:38
· 14 commits to main since this release
0.6.0
01f044b
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

v0.6.0 with Upgraded Security and Ballot Review

IMPORTANT: This version requires additional upgrade steps! See below before updating.

Version 0.6.0 includes the security/privacy overhaul developed as part of the LFX mentorship with student @007vedant. The added features include:

  • updated Python dependencies, including replacement of outdated ones
  • better encryption of voter/ballot links
  • auto-generation of cookie encryption key
  • ability to specify a minimum passphrase length

Additionally, voters may now "View" their ballots after voting, both to audit Elekto's functionality, and to check over their choices before deciding to revoke and revote or not.

However, adding all of this functionality required several changes to the database schema, including ones that are not handleable by SQLAlchemy automated migration. Please see the upgrading docs before upgrading Elekto to 0.6.0.

As usual, please update Elekto using the python code or the container image. File issues in the repo, or ask in #elekto on slack.cncf.io.

Contributors

007vedant
Assets 2
Loading