Yubikey Manager Versions Save

Version 5.4.0 (released 2024-03-27)

• Support for YubiKey Bio Multi-protocol Edition.
• CLI: Improve error messages for several failures.
• Attempt to send SIGHUP to yubikey-agent if it is blocking the connection.
• Bugfix: Allow "fido config" to work when no PIN is set on the YubiKey.
• Bugfix: MacOS - Fix race condition resulting in unneeded delay in fido commands over USB.
• Bugfix: Linux - Fix error when listing OTP devices when no YubiKeys are attached.
• Bugfix: OpenPGP - Fix RSA key generation on YubiKey NEO.

Version 5.3.0 (released 2024-01-31)

• FIDO: Add new CLI commands for PIN management and authenticator config (force-change, set-min-length, toggle-always-uv, enable-ep-attestation).
• PIV: Improve handling of legacy "PUK blocked" flag.
• PIV: Improve handling of malformed certificates.
• PIV: Display key information in "piv info" output on supported devices.
• OTP: Fix some commands incorrectly showing errors when used over NFC/CCID.
• Add tab-completion for YubiKey serial numbers and NFC readers.

Version 5.2.1 (released 2023-10-10)

• Add support for Python 3.12.
• OATH: detect and remove corrupted credentials.
• Bugfix: HSMAUTH: Fix order of CLI arguments.

Version 5.2.0 (released 2023-08-21)

• PIV: Support for compressed certificates.
• OpenPGP: Use InvalidPinError for wrong PIN.
• Add YubiHSM Auth application support.
• Improved API documentation.
• Scripting: Add name attribute to device.
• Bugfix: PIV: don't throw InvalidPasswordError on malformed PEM private key.

Version 5.1.1 (released 2023-04-27)

• Bugfix: PIV: string representation of SLOT caused infinite loop on Python <3.11.
• Bugfix: Fix errors in 'ykman config nfc' on YubiKeys without NFC capability.
• Bugfix: Fix error message shown when invalid modhex input length given for YubiOTP.

Version 5.1.0 (released 2023-04-17)

• Add OpenPGP functionality to supported API.
• Add PIV key info command to CLI.
• PIV: Support signing prehashed data via API.
• Bugfix: Fix signing PIV certificates/CSRs with key that always requires PIN.
• Bugfix: Fix incorrect display name detection for certain keys over NFC.

Version 5.0.1 (released 2023-01-17)

• Bugfix: Fix the interactive confirmation prompt for some CLI commands.
• Bugfix: OpenPGP Signature PIN policy values were swapped.
• Bugfix: FIDO: Handle discoverable credentials that are missing name or displayName.
• Add support for Python 3.11.
• Remove extra whitespace characters from CLI into command output.

Version 5.0.0 (released 2022-10-19)

• Various cleanups and improvements to the API.
• Improvements to the handling of YubiKeys and connections.
• Command aliases for ykman 3.x (introduced in ykman 4.0) have now been dropped.
• Installers for ykman are now provided for Windows (amd64) and MacOS (universal2).
• Logging has been improved, and a new TRAFFIC level has been introduced.
• The codebase has been improved for scripting usage, either directly as a Python module, or via the new "ykman script" command. See doc/Scripting.adoc, doc/Library_Usage.adoc, and examples/ for more details.
• PIV: Add support for dotted-string OIDs when parsing RFC4514 strings.
• PIV: Drop support for signing certificates and CSRs with SHA-1.
• FIDO: Credential management commands have been improved to deal with ambiguity in certain cases.
• OATH: Access Keys ("remembered" passwords) are now stored in the system keyring.
• OpenPGP: Commands have been added to manage PINs.

Version 4.0.9 (released 2022-06-17)

• Dependency: Add support for python-fido2 1.x
• Fix: Drop stated support for Click 6 as features from 7 are being used.

• Bugfix: Fix error message for invalid modhex when programing a YubiOTP credential.
• Bugfix: Fix issue with displaying a Steam credential when it is the only account.
• Bugfix: Prevent installation of files in site-packages root.
• Bugfix: Fix cleanup logic in PIV for protected management key.
• Add support for token identifier when programming slot-based HOTP.
• Add support for programming NDEF in text mode.
• Dependency: Add support for Cryptography <= 38.