Spin v1.5.0

The 1.5.0 release of Spin brings a number of features, improvements and bug fixes. 🚀

Some highlights in 1.5 at a glance:

• Introducing Serverless AI and LLM (Large Language Model) inferencing support!
  • Check out the SIP (Spin Improvement Proposal) and implementation for this feature
  • Dive in to the Serverless AI Tutorial
• Spin now enables wasmtime's pooling allocator by default (https://github.com/fermyon/spin/pull/1721)
  • This brings improved performance, particularly for high-concurrency setups
• Intra-component outbound http within same app via self(https://github.com/fermyon/spin/pull/1710)
  • Components within a Spin app can easily communicate with each other via outbound http provided they are configured with allowed_http_hosts = ["self"]
• SQLite API support for Go/TinyGo (https://github.com/fermyon/spin/pull/1714)

Other improvements:

• spin up will now auto-create the working directory (workdir) specified in spin.toml if it does not already exist (https://github.com/fermyon/spin/pull/1691)

As always, thanks to contributors old and new for helping improve Spin on a daily basis! 🎉

Verifying the Release Signature

After downloading the 1.5.0 release of Spin, either via the artifact attached to this release corresponding to your OS/architecture combination or via the installation method of your choice, you are ready to verify the release signature.

First, install cosign. This is the tool we'll use to perform signature verification. Then run the following command:

cosign verify-blob \
    --signature spin.sig --certificate crt.pem \
    --certificate-identity https://github.com/fermyon/spin/.github/workflows/release.yml@refs/tags/v1.5.0 \
    --certificate-oidc-issuer https://token.actions.githubusercontent.com \
    --certificate-github-workflow-sha ca08dd933de32fe09f4c318fbbc1f04853f2085f \
    --certificate-github-workflow-repository fermyon/spin \
    spin

If the verification passed, you should see:

Verified OK

What's Changed

• feat(templates): update sdk to v1.4.2 by @github-actions in https://github.com/fermyon/spin/pull/1722
• Enable Wasmtime's pooling allocator by default by @alexcrichton in https://github.com/fermyon/spin/pull/1721
• add make install command by @michelleN in https://github.com/fermyon/spin/pull/1724
• Use default flate2 backend by @kate-goldenring in https://github.com/fermyon/spin/pull/1728
• Large Language Model (LLM) Support by @rylev in https://github.com/fermyon/spin/pull/1731
• Temporarily turn off Linux aarch64 builds to generate a canary release by @radu-matei in https://github.com/fermyon/spin/pull/1732
• allow outbound http to components in same app by default by @michelleN in https://github.com/fermyon/spin/pull/1710
• remove unwanted mut by @michelleN in https://github.com/fermyon/spin/pull/1736
• Fix clippy errors from 1.72 by @rylev in https://github.com/fermyon/spin/pull/1726
• Add more conversions to sqlite SDK ValueResult by @rylev in https://github.com/fermyon/spin/pull/1725
• Turn back on llm gpu features by @rylev in https://github.com/fermyon/spin/pull/1740
• Allow codellama-instruct as model for inferencing by @rylev in https://github.com/fermyon/spin/pull/1743
• oci: Inline small content into manifest by @lann in https://github.com/fermyon/spin/pull/1744
• Update spin-componentize by @rylev in https://github.com/fermyon/spin/pull/1749
• Update SDK support table by @mikkelhegn in https://github.com/fermyon/spin/pull/1751
• Update the release process with some improvements. by @fibonacci1729 in https://github.com/fermyon/spin/pull/1645
• feat(sdk/go): implement sqlite SDK for TinyGo by @adamreese in https://github.com/fermyon/spin/pull/1714
• (fix/oci-client): allow adding a token for OCI client by @radu-matei in https://github.com/fermyon/spin/pull/1600
• Create working dir if it does not exist by @rylev in https://github.com/fermyon/spin/pull/1691
• Bump webpki from 0.22.0 to 0.22.1 by @dependabot in https://github.com/fermyon/spin/pull/1747
• Try building aarch64 linux canary build by @rylev in https://github.com/fermyon/spin/pull/1741
• chore(*): bump version to 1.5.0 by @vdice in https://github.com/fermyon/spin/pull/1758

Full Changelog: https://github.com/fermyon/spin/compare/v1.4.2...v1.5.0

This is a "canary" release of the most recent commits on our main branch. Canary is not stable.
It is only intended for developers wishing to try out the latest features in Spin, some of which may not be fully implemented.

This is a "canary" release of the most recent commits on our main branch. Canary is not stable.
It is only intended for developers wishing to try out the latest features in Spin, some of which may not be fully implemented.

This is a "canary" release of the most recent commits on our main branch. Canary is not stable.
It is only intended for developers wishing to try out the latest features in Spin, some of which may not be fully implemented.

This is a "canary" release of the most recent commits on our main branch. Canary is not stable.
It is only intended for developers wishing to try out the latest features in Spin, some of which may not be fully implemented.

This is a "canary" release of the most recent commits on our main branch. Canary is not stable.
It is only intended for developers wishing to try out the latest features in Spin, some of which may not be fully implemented.

This is a "canary" release of the most recent commits on our main branch. Canary is not stable.
It is only intended for developers wishing to try out the latest features in Spin, some of which may not be fully implemented.

This is a "canary" release of the most recent commits on our main branch. Canary is not stable.
It is only intended for developers wishing to try out the latest features in Spin, some of which may not be fully implemented.

This is a "canary" release of the most recent commits on our main branch. Canary is not stable.
It is only intended for developers wishing to try out the latest features in Spin, some of which may not be fully implemented.

Spin v1.4.1

This is a patch release of Spin which contains a fix for a bug found in the Redis SDK which caused an instantiation error during spin up.

Verifying the Release Signature

After downloading the v1.4.1 release of Spin, either via the artifact attached to this release corresponding to your OS/architecture combination or via the install script, you are ready to verify the release signature.

First, install cosign. This is the tool we'll use to perform signature verification. Then run the following command:

cosign verify-blob \
    --signature spin.sig --certificate crt.pem \
    --certificate-identity https://github.com/fermyon/spin/.github/workflows/release.yml@refs/tags/v1.4.1 \
    --certificate-oidc-issuer https://token.actions.githubusercontent.com \
    --certificate-github-workflow-sha e0bd9115fa51399e106681ac1c9ed1afbad1baaa \
    --certificate-github-workflow-repository fermyon/spin \
    spin

If the verification passed, you should see:

Verified OK

What's Changed

• [Backport v1.4] Fix Redis Rust component instantiation by @itowlson in https://github.com/fermyon/spin/pull/1653

Full Changelog: https://github.com/fermyon/spin/compare/v1.4.0...v1.4.1

Spin v1.4.0

We are excited to announce the release of Spin 1.4! 🎉

This release includes several exciting new features:

• A built-in SQLite database provides relational storage right out of the box: nothing to install, no connection strings
• A new command spin doctor which facilitates diagnosing and detecting problems when building and running your apps
• A Plugin badger which checks for updates of installed plugins and prompts you to upgrade so you know when a new version is available

As always, thanks to all of our contributors for continually improving Spin! ❤️

Verifying the Release Signature

After downloading the v1.4.0 release of Spin, either via the artifact attached to this release corresponding to your OS/architecture combination or via the install script, you are ready to verify the release signature.

First, install cosign. This is the tool we'll use to perform signature verification. Then run the following command:

cosign verify-blob \
    --signature spin.sig --certificate crt.pem \
    --certificate-identity https://github.com/fermyon/spin/.github/workflows/release.yml@refs/tags/v1.4.0 \
    --certificate-oidc-issuer https://token.actions.githubusercontent.com \
    --certificate-github-workflow-sha 7aab1fe43be70a271ba6336b959cd52191fc2253 \
    --certificate-github-workflow-repository fermyon/spin \
    spin

If the verification passed, you should see:

Verified OK

What's Changed

• Add e2e tests for config variables by @kate-goldenring in https://github.com/fermyon/spin/pull/1566
• bump version to 1.4.0-pre0 by @dicej in https://github.com/fermyon/spin/pull/1575
• feat(templates): update sdk to v1.3.0 by @github-actions in https://github.com/fermyon/spin/pull/1576
• Bump cargo-vet to 0.7.0 by @bholley in https://github.com/fermyon/spin/pull/1568
• Allow re-initializing the connection store by @rylev in https://github.com/fermyon/spin/pull/1573
• List plugins in help by @itowlson in https://github.com/fermyon/spin/pull/1560
• feat: make bindle optional in spin-loader crate by @Mossaka in https://github.com/fermyon/spin/pull/1585
• Prevent concurrent spin plugin update commands by @itowlson in https://github.com/fermyon/spin/pull/1569
• Small simplifications for spin-app by @rylev in https://github.com/fermyon/spin/pull/1582
• Move resolve_file_path to spin_common by @fibonacci1729 in https://github.com/fermyon/spin/pull/1584
• Plugin update badger by @itowlson in https://github.com/fermyon/spin/pull/1577
• Upgrade to wasmtime 9.0 by @lann in https://github.com/fermyon/spin/pull/1583
• fix go sdk error when running tests by @rajatjindal in https://github.com/fermyon/spin/pull/1547
• Debug assert that default sqlite database is present by @rylev in https://github.com/fermyon/spin/pull/1579
• Fix brokwn like to Key Value Store by @giodamelio in https://github.com/fermyon/spin/pull/1597
• Adjust build script dependencies by @alexcrichton in https://github.com/fermyon/spin/pull/1587
• Remove instructions to install Fermyon Platform dependencies for tests by @kate-goldenring in https://github.com/fermyon/spin/pull/1564
• Add constructor for HostComponentInitData by @itowlson in https://github.com/fermyon/spin/pull/1588
• Warn when directly using a WebAssembly component by @rylev in https://github.com/fermyon/spin/pull/1595
• Add warn macro in terminal crate by @rylev in https://github.com/fermyon/spin/pull/1598
• Upgrade wasmtime 10.0 by @rylev in https://github.com/fermyon/spin/pull/1594
• Tweak issue templates by @itowlson in https://github.com/fermyon/spin/pull/1609
• Make some sqlite types pub by @rylev in https://github.com/fermyon/spin/pull/1607
• Update spin-componentize to allow wit-bindgen 0.7 by @rylev in https://github.com/fermyon/spin/pull/1610
• fix(plugins): do not require plugin name on upgrades from local or remote manifest by @kate-goldenring in https://github.com/fermyon/spin/pull/1593
• also delete release when deleting tag by @rajatjindal in https://github.com/fermyon/spin/pull/1611
• Update spin-componentize and wasmtime by @rylev in https://github.com/fermyon/spin/pull/1615
• Clearer error message on installing older version of installed plugin by @itowlson in https://github.com/fermyon/spin/pull/1612
• Skip downloading canary Spin in build e2e tests by @itowlson in https://github.com/fermyon/spin/pull/1619
• use commit and debug build of release-action by @rajatjindal in https://github.com/fermyon/spin/pull/1620
• Make sure no instance error message reflect instance name by @rylev in https://github.com/fermyon/spin/pull/1621
• List installed plugins in spin plugins list by @itowlson in https://github.com/fermyon/spin/pull/1613
• Record where plugins were installed from by @itowlson in https://github.com/fermyon/spin/pull/1614
• Validate variable and config key names at app load by @itowlson in https://github.com/fermyon/spin/pull/1623
• Unhide 1.4 features by @itowlson in https://github.com/fermyon/spin/pull/1617
• Don't deploy old docs site on every merge to main by @itowlson in https://github.com/fermyon/spin/pull/1626
• spin doctor: detect Rust not installed/Wasm target not installed by @itowlson in https://github.com/fermyon/spin/pull/1529
• Improve config key error name validation errors by @itowlson in https://github.com/fermyon/spin/pull/1629
• Update libsql-client dependency by @rylev in https://github.com/fermyon/spin/pull/1624
• Upgrade Rust SDK to wit-bindgen 0.8 by @rylev in https://github.com/fermyon/spin/pull/1599
• check for missing template/sdk tags by @rajatjindal in https://github.com/fermyon/spin/pull/1632
• Include actual and expected values in config test error message by @rajatjindal in https://github.com/fermyon/spin/pull/1633
• Add wit-bindgen-rust dep back to templates to fix e2e by @fibonacci1729 in https://github.com/fermyon/spin/pull/1637
• Move AppInfo into spin-http by @fibonacci1729 in https://github.com/fermyon/spin/pull/1634
• fix(build): Remove git worktree requirements for build to succeed by @kate-goldenring in https://github.com/fermyon/spin/pull/1590
• fix(deps): remove zlib dependency by @kate-goldenring in https://github.com/fermyon/spin/pull/1603
• Check libsql url is in the right shape by @rylev in https://github.com/fermyon/spin/pull/1636
• Bump versions for v1.4 release by @fibonacci1729 in https://github.com/fermyon/spin/pull/1640
• Revert removal of wit-bindgen dep by @fibonacci1729 in https://github.com/fermyon/spin/pull/1642
• Update version to v1.4.0 by @fibonacci1729 in https://github.com/fermyon/spin/pull/1643

New Contributors

• @giodamelio made their first contribution in https://github.com/fermyon/spin/pull/1597
• @alexcrichton made their first contribution in https://github.com/fermyon/spin/pull/1587

Full Changelog: https://github.com/fermyon/spin/compare/v1.3.0...v1.4.0

Spin v1.3.0

We are excited to announce the release of Spin 1.3! The v1.3.0 release of Spin brings a number of features, user experience improvements and bug fixes. It also highlights work to focus the scope of the core Spin CLI as the cloud deploy and cloud login subcommands were removed from Spin and moved to the new cloud plugin. Users who wish to log into or deploy to Fermyon Cloud will have the same experience as before. When you run spin cloud login or spin cloud deploy in Spin 1.3, Spin will look for the cloud plugin, and if it is not installed, it will install it for you.

As always, thanks to contributors old and new for helping improve Spin on a daily basis! 🎉

Verifying the Release Signature

After downloading the v1.3.0 release of Spin, either via the artifact attached to this release corresponding to your OS/architecture combination or via the install script, you are ready to verify the release signature.

First, install cosign. This is the tool we'll use to perform signature verification. Then run the following command:

cosign verify-blob \
    --signature spin.sig --certificate crt.pem \
    --certificate-identity https://github.com/fermyon/spin/.github/workflows/release.yml@refs/tags/v1.3.0 \
    --certificate-oidc-issuer https://token.actions.githubusercontent.com \
    --certificate-github-workflow-sha 9fb8256d1380a046414b22bf2c17d1543f5029e4 \
    --certificate-github-workflow-repository fermyon/spin \
    spin

If the verification passed, you should see:

Verified OK

What's Changed

• feat(templates): update sdk to v1.2.0 by @github-actions in https://github.com/fermyon/spin/pull/1509
• Tolerate component routes not starting with '/' by @itowlson in https://github.com/fermyon/spin/pull/1500
• bump versions to v1.3.0-pre0 by @fibonacci1729 in https://github.com/fermyon/spin/pull/1511
• Add Azure CosmosDB implementation for KV by @radu-matei in https://github.com/fermyon/spin/pull/1463
• rust-sdk: Make OutboundHttpError public by @lann in https://github.com/fermyon/spin/pull/1518
• Keep SDK annotated functions in scope by @fibonacci1729 in https://github.com/fermyon/spin/pull/1499
• Rename doctor --file to --from for consistency by @itowlson in https://github.com/fermyon/spin/pull/1513
• HostComponentInitData isn't only for tests; its Default impl is by @itowlson in https://github.com/fermyon/spin/pull/1523
• Validate components are not granted access to undefined k/v stores by @itowlson in https://github.com/fermyon/spin/pull/1486
• Fix merge woe with new K/V trait function by @itowlson in https://github.com/fermyon/spin/pull/1524
• Colorify errors by @rylev in https://github.com/fermyon/spin/pull/1497
• Canonicalize source path by @rylev in https://github.com/fermyon/spin/pull/1503
• Add color to each step of spin build and spin up by @rylev in https://github.com/fermyon/spin/pull/1527
• [SIP] sqlite host component by @rylev in https://github.com/fermyon/spin/pull/1408
• spin new: match unrecognised template as tag by @itowlson in https://github.com/fermyon/spin/pull/1530
• Support building only specific components by @itowlson in https://github.com/fermyon/spin/pull/1515
• Fix spin doctor spurious "missing Wasm file" if app is in another directory by @itowlson in https://github.com/fermyon/spin/pull/1514
• E2E Error Output Tests by @rylev in https://github.com/fermyon/spin/pull/1502
• spin-app: Make add_dynamic_host_component return handle by @lann in https://github.com/fermyon/spin/pull/1538
• Use a vergen that handles spew in timestamp output by @itowlson in https://github.com/fermyon/spin/pull/1541
• Make HostComponentDataHandle::from_any non-pub & non-unsafe by @lann in https://github.com/fermyon/spin/pull/1542
• fix(go/sdk): Populate full url in request object by @adamreese in https://github.com/fermyon/spin/pull/1528
• SQLite libsql tidying by @itowlson in https://github.com/fermyon/spin/pull/1545
• Avoid showing SQLite features in releases until ready by @itowlson in https://github.com/fermyon/spin/pull/1550
• chore(examples): update dog facts endpoint by @adamreese in https://github.com/fermyon/spin/pull/1554
• SQLite manifest validation and tests by @itowlson in https://github.com/fermyon/spin/pull/1549
• Move Cloud commands out of Spin CLI and into a plugin by @kate-goldenring in https://github.com/fermyon/spin/pull/1452
• Add issue template for Troubleshooting and FAQ by @harshil1973 in https://github.com/fermyon/spin/pull/1556
• Conditionally use Homebrew location for Spin plugins and templates by @kate-goldenring in https://github.com/fermyon/spin/pull/1494
• Better output on spin up when no spin.toml by @itowlson in https://github.com/fermyon/spin/pull/1558
• fix(plugins): Display required Spin version of incompatible plugins by @kate-goldenring in https://github.com/fermyon/spin/pull/1563
• Fix typos on cloud command aliases by @itowlson in https://github.com/fermyon/spin/pull/1572
• Small SQLite clean up by @rylev in https://github.com/fermyon/spin/pull/1570
• core: Add Engine::find_host_component_handle by @lann in https://github.com/fermyon/spin/pull/1561
• docs(*): Update SIPs Index to contain latest SIPs by @kate-goldenring in https://github.com/fermyon/spin/pull/1565
• bump version to 1.3.0 by @dicej in https://github.com/fermyon/spin/pull/1574

New Contributors

• @harshil1973 made their first contribution in https://github.com/fermyon/spin/pull/1556

Full Changelog: https://github.com/fermyon/spin/compare/v1.2.0...v1.3.0

Spin v1.2.1

This is a patch release of Spin to pick up a few features and improvements that didn't quite make it into Spin v1.2.0.

Verifying the Release Signature

After downloading the v1.2.1 release of Spin, either via the artifact attached to this release corresponding to your OS/architecture combination or via the install script, you are ready to verify the release signature.

First, install cosign. This is the tool we'll use to perform signature verification. Then run the following command:

cosign verify-blob \
    --signature spin.sig --certificate crt.pem \
    --certificate-identity https://github.com/fermyon/spin/.github/workflows/release.yml@refs/tags/v1.2.1 \
    --certificate-oidc-issuer https://token.actions.githubusercontent.com \
    --certificate-github-workflow-sha fbc3874ee2320389e78b7661f4412201d8cb718a \
    --certificate-github-workflow-repository fermyon/spin \
    spin

If the verification passed, you should see:

Verified OK

What's Changed

• feat(templates): update sdk to v1.2.0 by @github-actions in https://github.com/fermyon/spin/pull/1509
• Tolerate component routes not starting with '/' by @itowlson in https://github.com/fermyon/spin/pull/1500
• bump versions to v1.3.0-pre0 by @fibonacci1729 in https://github.com/fermyon/spin/pull/1511
• Add Azure CosmosDB implementation for KV by @radu-matei in https://github.com/fermyon/spin/pull/1463
• rust-sdk: Make OutboundHttpError public by @lann in https://github.com/fermyon/spin/pull/1518
• Keep SDK annotated functions in scope by @fibonacci1729 in https://github.com/fermyon/spin/pull/1499
• Updates for v1.2.1 by @fibonacci1729 in https://github.com/fermyon/spin/pull/1521
• bump versions for 1.2.1 by @fibonacci1729 in https://github.com/fermyon/spin/pull/1519

Full Changelog: https://github.com/fermyon/spin/compare/v1.2.0...v1.2.1

Spin v1.2.0

We are excited to announce the release of Spin 1.2! 🎉 Spin v1.2.0 features a new key-value host implementation backed by Azure Cosmos DB, an improved key-value SDK experience for easily getting/setting JSON encoded values, and enhancements to spin watch enabling the watching of multiple components.

Thank you to all contributors new and old!

Verifying the Release Signature

After downloading the v1.2.0 release of Spin, either via the artifact attached to this release corresponding to your OS/architecture combination or via the install script, you are ready to verify the release signature.

First, install cosign. This is the tool we'll use to perform signature verification. Then run the following command:

cosign verify-blob \
    --signature spin.sig --certificate crt.pem \
    --certificate-identity https://github.com/fermyon/spin/.github/workflows/release.yml@refs/tags/v1.2.0 \
    --certificate-oidc-issuer https://token.actions.githubusercontent.com \
    --certificate-github-workflow-sha c4fbd08eb75ce9b2729bf7c450520076e692c6af \
    --certificate-github-workflow-repository fermyon/spin \
    spin

If the verification passed, you should see:

Verified OK

What's Changed

• feat(templates): update sdk to v1.1.0 by @github-actions in https://github.com/fermyon/spin/pull/1390
• bump versions to v1.2.0-pre0 by @michelleN in https://github.com/fermyon/spin/pull/1388
• [sdk]: Add options fn on HTTP router for Rust by @ThorstenHans in https://github.com/fermyon/spin/pull/1393
• Improve error when the component wasm does not exist by @rylev in https://github.com/fermyon/spin/pull/1395
• deploy: Check for non-'default' stores before deploy by @lann in https://github.com/fermyon/spin/pull/1389
• feat(sdk/go): add constants for Spin headers by @adamreese in https://github.com/fermyon/spin/pull/1398
• Fix warning when building spin by @calebschoepp in https://github.com/fermyon/spin/pull/1401
• tests(sdk/go): kill spin subprocesses after test runs by @adamreese in https://github.com/fermyon/spin/pull/1392
• [sdk]: Custom Display implementation for Router by @ThorstenHans in https://github.com/fermyon/spin/pull/1394
• Revert "tests(sdk/go): kill spin subprocesses after test runs" by @adamreese in https://github.com/fermyon/spin/pull/1410
• fix multiple header values not preserved by Rust SDK by @Patrick0308 in https://github.com/fermyon/spin/pull/1407
• Handle multi-component apps better in spin watch by @calebschoepp in https://github.com/fermyon/spin/pull/1409
• Use the version of cargo vet that works with the audit config by @itowlson in https://github.com/fermyon/spin/pull/1411
• docs(sdk/go): Add top-level package doc string for godocs by @adamreese in https://github.com/fermyon/spin/pull/1412
• Fix duplicate package names causing warnings for Rust SDK consumers by @itowlson in https://github.com/fermyon/spin/pull/1413
• chore(deps): bump openssl from 0.10.45 to 0.10.48 by @dependabot in https://github.com/fermyon/spin/pull/1326
• Reduce logging by @rajatjindal in https://github.com/fermyon/spin/pull/1419
• Added bootstrapping script for dev container to update Rust and Wasm3… by @suneetnangia in https://github.com/fermyon/spin/pull/1382
• docs(examples): add/update READMEs by @vdice in https://github.com/fermyon/spin/pull/1423
• chore(Cargo.toml): bump rusqlite to 0.29.0 by @vdice in https://github.com/fermyon/spin/pull/1421
• fix: Upgrade clap and suppress clippy error by @lann in https://github.com/fermyon/spin/pull/1426
• Remove dead dependency on wit-bindgen in Rust SDK macro by @rylev in https://github.com/fermyon/spin/pull/1428
• New readme by @melissaklein24 in https://github.com/fermyon/spin/pull/1333
• Simplify version handling in manifest by @rylev in https://github.com/fermyon/spin/pull/1396
• chore(deps): bump wasmtime from 7.0.0 to 7.0.1 by @dependabot in https://github.com/fermyon/spin/pull/1431
• Large refactor of spin watch to only run what is necessary when files change by @calebschoepp in https://github.com/fermyon/spin/pull/1418
• Better error if plugin URL 404s by @itowlson in https://github.com/fermyon/spin/pull/1441
• Fix misleading error message if built-in app trigger was missing required parameter by @itowlson in https://github.com/fermyon/spin/pull/1440
• Pin the version of spin componentize we're using by @rylev in https://github.com/fermyon/spin/pull/1439
• ref(sdk/go): remove unused custom error type by @adamreese in https://github.com/fermyon/spin/pull/1405
• Add spin-common crate by @lann in https://github.com/fermyon/spin/pull/1444
• implement refresh token support by @bacongobbler in https://github.com/fermyon/spin/pull/1414
• PHP template fails due to build without command by @itowlson in https://github.com/fermyon/spin/pull/1446
• parallelize oci pulls by @karthik2804 in https://github.com/fermyon/spin/pull/1296
• Add spin up --key-value option by @itowlson in https://github.com/fermyon/spin/pull/1442
• fix(tests): update php test endpoint to /index.php by @vdice in https://github.com/fermyon/spin/pull/1449
• Add 'spin_common::sloth' module by @lann in https://github.com/fermyon/spin/pull/1451
• Provide more info when HTTP integration tests fail by @itowlson in https://github.com/fermyon/spin/pull/1457
• Add 'spin-world' crate by @lann in https://github.com/fermyon/spin/pull/1454
• fix stdout line breaks by @rajatjindal in https://github.com/fermyon/spin/pull/1462
• http: Move more config structures to spin-http crate by @lann in https://github.com/fermyon/spin/pull/1466
• Add DynamicHostComponent::validate_app by @lann in https://github.com/fermyon/spin/pull/1455
• add loading spinner to registry push/pull by @karthik2804 in https://github.com/fermyon/spin/pull/1468
• core: Update docs and tests to use wasmtime::component::bindgen by @lann in https://github.com/fermyon/spin/pull/1464
• Exercise spin up --key-value in tests by @itowlson in https://github.com/fermyon/spin/pull/1459
• Remove autobindle from recommended VS Code extensions by @itowlson in https://github.com/fermyon/spin/pull/1471
• ensure deterministic component iteration order by @dicej in https://github.com/fermyon/spin/pull/1472
• Track memory and expose from Store Data by @rylev in https://github.com/fermyon/spin/pull/1475
• Rationalise -f and accept directory everywhere by @itowlson in https://github.com/fermyon/spin/pull/1467
• remove WASI files from wit/preview2 by @dicej in https://github.com/fermyon/spin/pull/1476
• ref(sdk/go): use spin build for building test fixtures by @adamreese in https://github.com/fermyon/spin/pull/1470
• Add 'a' as short argumet for --accept-defaults by @mikkelhegn in https://github.com/fermyon/spin/pull/1474
• Update README.md by @qtfkwk in https://github.com/fermyon/spin/pull/1482
• feat(sdk/rust): add optional feature for serde by @radu-matei in https://github.com/fermyon/spin/pull/1483
• feat(plugins): show description and homepage of installed plugin by @cardoso in https://github.com/fermyon/spin/pull/1484
• cleanup statedir before test by @rajatjindal in https://github.com/fermyon/spin/pull/1461
• Remove unhelpful error when preparing spin configuration by @rylev in https://github.com/fermyon/spin/pull/1496
• Allow direct mounting directory 'pattern' (plus improve errors) by @rylev in https://github.com/fermyon/spin/pull/1488
• spin doctor prototype by @lann in https://github.com/fermyon/spin/pull/1435
• app: Add "inert" App feature by @lann in https://github.com/fermyon/spin/pull/1480
• build: Fix --up long flag name by @lann in https://github.com/fermyon/spin/pull/1506
• bump versions for v1.2.0 by @fibonacci1729 in https://github.com/fermyon/spin/pull/1508
• feat(plugins): provide additional build info to plugins by @cardoso in https://github.com/fermyon/spin/pull/1492

New Contributors

• @ThorstenHans made their first contribution in https://github.com/fermyon/spin/pull/1393
• @Patrick0308 made their first contribution in https://github.com/fermyon/spin/pull/1407
• @suneetnangia made their first contribution in https://github.com/fermyon/spin/pull/1382
• @qtfkwk made their first contribution in https://github.com/fermyon/spin/pull/1482

Full Changelog: https://github.com/fermyon/spin/compare/v1.1.0...v1.2.0

Spin v1.1.0

Cheers to newest Spin release! Spin v1.1.0 brings improvements to the developer experience through a new spin watch command, the ability to configure the Spin key/value store, new HTTP routers for Rust and Go, bug fixes and more!

We are always excited to see and welcome new and old contributors! Thank you so much for spending time and energy here. We wholeheartedly appreciate the work you do to continually improve Spin! 💙

What's Changed

• docs: Add branch creation to release process by @lann in https://github.com/fermyon/spin/pull/1256
• fix(examples): Use the same url for kv in tinygo and rust by @adamreese in https://github.com/fermyon/spin/pull/1265
• fix: Absolutize direct mounts by @lann in https://github.com/fermyon/spin/pull/1270
• Add SIP for signing Spin releases by @radu-matei in https://github.com/fermyon/spin/pull/1217
• ci: Add backport workflow by @lann in https://github.com/fermyon/spin/pull/1275
• Backport script by @lann in https://github.com/fermyon/spin/pull/1280
• fix wagi redirect status code by @rajatjindal in https://github.com/fermyon/spin/pull/1274
• http: add spin-client-addr header by @psarna in https://github.com/fermyon/spin/pull/1298
• feat(templates): update sdk to v1.0.0-rc.2 by @github-actions in https://github.com/fermyon/spin/pull/1304
• chore(release.yml): bump delete-tag-and-release action version by @vdice in https://github.com/fermyon/spin/pull/1306
• fix typo in error message /cannnot/cannot/ by @adamreese in https://github.com/fermyon/spin/pull/1308
• docs(release-process.md): updates by @vdice in https://github.com/fermyon/spin/pull/1307
• feat(templates): update sdk to v1.0.0 by @github-actions in https://github.com/fermyon/spin/pull/1316
• chore(spin): bump versions for next anticipated release by @fibonacci1729 in https://github.com/fermyon/spin/pull/1315
• chore(release-process.md): add make build to version bumps step by @fibonacci1729 in https://github.com/fermyon/spin/pull/1319
• Typed metadata by @lann in https://github.com/fermyon/spin/pull/1313
• Add logo dark mode version by @nucliweb in https://github.com/fermyon/spin/pull/1323
• chore(docs): bump spin version by @fibonacci1729 in https://github.com/fermyon/spin/pull/1324
• Add spin watch command by @calebschoepp in https://github.com/fermyon/spin/pull/1237
• implement component support by @dicej in https://github.com/fermyon/spin/pull/1321
• update release.yml so it can build spin-componentize by @dicej in https://github.com/fermyon/spin/pull/1329
• remove "early preview" caveat from README.md by @dicej in https://github.com/fermyon/spin/pull/1330
• Regenerate cargo vet exemptions by @radu-matei in https://github.com/fermyon/spin/pull/1328
• fix spin-timer example and add a test so it stays fixed by @dicej in https://github.com/fermyon/spin/pull/1331
• ref(wagi): move shareable WAGI code into spin-http by @fibonacci1729 in https://github.com/fermyon/spin/pull/1332
• update Cargo.toml rust-version to 1.67 by @dicej in https://github.com/fermyon/spin/pull/1334
• Add KV to list of interfaces to provide SDK version warning by @itowlson in https://github.com/fermyon/spin/pull/1338
• ref(sdk): use the macro the generate bindings by @fibonacci1729 in https://github.com/fermyon/spin/pull/1348
• Updating static-fileserver template to use 0.0.2 by @mikkelhegn in https://github.com/fermyon/spin/pull/1343
• chore: add tools directory and include modsurfer by @nilslice in https://github.com/fermyon/spin/pull/1190
• feat(sdk): add HTTP router for Rust SDK by @fibonacci1729 in https://github.com/fermyon/spin/pull/1339
• chore(code-coverage.yml): disable cron trigger by @vdice in https://github.com/fermyon/spin/pull/1354
• sip: Add runtime config section to Key-Value SIP by @lann in https://github.com/fermyon/spin/pull/1352
• Show error source list when printing handler error by @rylev in https://github.com/fermyon/spin/pull/1358
• Remove unused 'namespace' field from ApplicationInformation by @rylev in https://github.com/fermyon/spin/pull/1357
• Add simple Go router based on github.com/julienschmidt/httprouter by @radu-matei in https://github.com/fermyon/spin/pull/1342
• Don't assume that the error can be dereferenced by @rylev in https://github.com/fermyon/spin/pull/1363
• add spin sdk based http client by @rajatjindal in https://github.com/fermyon/spin/pull/1361
• fix trap-on-error for file I/O by @dicej in https://github.com/fermyon/spin/pull/1353
• Improve spin watch by @calebschoepp in https://github.com/fermyon/spin/pull/1341
• feat(kv): add redis backed KV host component by @fibonacci1729 in https://github.com/fermyon/spin/pull/1365
• Add key value store runtime configuration by @lann in https://github.com/fermyon/spin/pull/1360
• update spin-componentize to address spin-fileserver issues by @dicej in https://github.com/fermyon/spin/pull/1374
• Add key-value redis runtime config by @fibonacci1729 in https://github.com/fermyon/spin/pull/1375
• Add default HTTP client compatible with Spin SDK by @radu-matei in https://github.com/fermyon/spin/pull/1369
• chore(deps): bump h2 from 0.3.16 to 0.3.17 by @dependabot in https://github.com/fermyon/spin/pull/1377
• updating versions to 1.1.0 for release by @michelleN in https://github.com/fermyon/spin/pull/1379
• fix(kv): print kv store config by @fibonacci1729 in https://github.com/fermyon/spin/pull/1384
• Revert "updating versions to 1.1.0 for release" by @michelleN in https://github.com/fermyon/spin/pull/1386
• bump versions to 1.1.0 by @michelleN in https://github.com/fermyon/spin/pull/1387

New Contributors

• @psarna made their first contribution in https://github.com/fermyon/spin/pull/1298
• @nucliweb made their first contribution in https://github.com/fermyon/spin/pull/1323
• @nilslice made their first contribution in https://github.com/fermyon/spin/pull/1190
• @rylev made their first contribution in https://github.com/fermyon/spin/pull/1358

Full Changelog: https://github.com/fermyon/spin/compare/v1.0.0...v1.1.0

Spin v1.0.0

We are excited to announce the release of Spin 1.0! 🎉 This release marks a major milestone in the development of Spin introducing the first stable release.

To all of our contributors, thank you for the instrumental work you do and have done in helping Spin reach maturity. ❤️

Verifying the Release Signature

After downloading the v1.0.0 release of Spin, either via the artifact attached to this release corresponding to your OS/architecture combination or via the install script, you are ready to verify the release signature.

First, install cosign. This is the tool we'll use to perform signature verification. Then run the following command:

cosign verify-blob \
    --signature spin.sig --certificate crt.pem \
    --certificate-identity https://github.com/fermyon/spin/.github/workflows/release.yml@refs/tags/v1.0.0 \
    --certificate-oidc-issuer https://token.actions.githubusercontent.com \
    --certificate-github-workflow-sha df99be238267b498451993d47b7e42e17da95c09 \
    --certificate-github-workflow-repository fermyon/spin \
    spin

If the verification passed, you should see:

Verified OK

What's Changed

• Bumped version to 0.11.0-pre0 by @tpmccallum in https://github.com/fermyon/spin/pull/1222
• fix code coverage by @rajatjindal in https://github.com/fermyon/spin/pull/1223
• Add key/value end to end test by @kate-goldenring in https://github.com/fermyon/spin/pull/1219
• fix cargo clippy by @rajatjindal in https://github.com/fermyon/spin/pull/1224
• feat(templates): update sdk to v0.10.0 by @github-actions in https://github.com/fermyon/spin/pull/1225
• add e2e tests for php, swift, oci, longevity by @rajatjindal in https://github.com/fermyon/spin/pull/1215
• Fix registry login error if directory does not exist by @itowlson in https://github.com/fermyon/spin/pull/1231
• chore: Refactor spin up OCI support by @lann in https://github.com/fermyon/spin/pull/1230
• use token to login by @rajatjindal in https://github.com/fermyon/spin/pull/1201
• config: Change EnvProvider prefix from SPIN_APP_ to SPIN_CONFIG_ by @lann in https://github.com/fermyon/spin/pull/1234
• Validate allowed key-value stores by @itowlson in https://github.com/fermyon/spin/pull/1235
• Refactor UpCommand by @lann in https://github.com/fermyon/spin/pull/1236
• Change base path for key value example app by @kate-goldenring in https://github.com/fermyon/spin/pull/1239
• chore: update examples and templates to spin_manifest_version by @fibonacci1729 in https://github.com/fermyon/spin/pull/1238
• bump Wasmtime version to 5.0.1 by @dicej in https://github.com/fermyon/spin/pull/1243
• feat(templates): update sdk to v0.10.1 by @github-actions in https://github.com/fermyon/spin/pull/1244
• Upgrade cargo-vet and add imports by @bholley in https://github.com/fermyon/spin/pull/1240
• Point simple rust testcase to local SDK by @kate-goldenring in https://github.com/fermyon/spin/pull/1248
• update version to v1.0.0-rc.1 by @michelleN in https://github.com/fermyon/spin/pull/1247
• feat(templates): update sdk to v1.0.0-rc.1 by @github-actions in https://github.com/fermyon/spin/pull/1250
• return 405 instead of panicking on unsupported method by @dicej in https://github.com/fermyon/spin/pull/1249
• update version to next anticipated release by @michelleN in https://github.com/fermyon/spin/pull/1251
• ci: Run build workflow on v* branches by @lann in https://github.com/fermyon/spin/pull/1252
• Backport CI update to v1.0 branch by @lann in https://github.com/fermyon/spin/pull/1255
• Fix direct mounts backport by @lann in https://github.com/fermyon/spin/pull/1271
• [Backport v1.0] ci(release.yml): sign binaries with cosign by @vdice in https://github.com/fermyon/spin/pull/1284
• [Backport v1.0] chore: clean up some command help text by @vdice in https://github.com/fermyon/spin/pull/1293
• [Backport v1.0] Print digest on registry push by @vdice in https://github.com/fermyon/spin/pull/1289
• [Backport v1.0] introduce add_key_value_pair to cloud::Client by @vdice in https://github.com/fermyon/spin/pull/1291
• [Backport v1.0] In spin plugin list, do not print prerelease warnings ahead of list by @vdice in https://github.com/fermyon/spin/pull/1294
• [Backport v1.0] Update runtime config system and add spin up --state-dir flag by @lann in https://github.com/fermyon/spin/pull/1288
• [Backport v1.0] feat(deploy): Add deploy flags to seed key/values by @vdice in https://github.com/fermyon/spin/pull/1290
• [Backport v1.0] Unbindle the up command and app manifest by @vdice in https://github.com/fermyon/spin/pull/1299
• [Backport v1.0] fix(cli): Rename --key-values to --key-value on deploy command by @vdice in https://github.com/fermyon/spin/pull/1300
• [Backport v1.0] chore(cli): rm bindle commands by @michelleN in https://github.com/fermyon/spin/pull/1301
• Updating version 1.0.0-rc.2 by @melissaklein24 in https://github.com/fermyon/spin/pull/1303
• [Backport v1.0] feat(templates): update sdk to v1.0.0-rc.2 by @vdice in https://github.com/fermyon/spin/pull/1305
• [Backport v1.0] fix typo in error message /cannnot/cannot/ by @michelleN in https://github.com/fermyon/spin/pull/1311
• chore(spin): bump versions for v1.0.0 release by @fibonacci1729 in https://github.com/fermyon/spin/pull/1314

New Contributors

• @bholley made their first contribution in https://github.com/fermyon/spin/pull/1240
• @melissaklein24 made their first contribution in https://github.com/fermyon/spin/pull/1303

Full Changelog: https://github.com/fermyon/spin/compare/v0.10.0...v1.0.0

Spin v1.0.0-rc.2

The Spin v1.0.0-rc.2 is the second release candidate for the Spin 1.0 release! We would love your help in testing this release. If you notice any issues, please feel free to open an issue or pull request. We would love to thank you for your efforts in helping us test with a Spin t-shirt. Once you've opened an issue or pull request, we will reach out for more info on where to send your Spin swag!

Verifying the Release Signature

We have added support for verifying the signature on the download artifacts using cosign. After downloading the v1.0.0-rc.2 release of Spin, either via the artifact attached to this release corresponding to your OS/architecture combination or via the install script, you are ready to verify the release signature.

First, install cosign. This is the tool we'll use to perform signature verification. Then run the following command:

cosign verify-blob \
    --signature spin.sig --certificate crt.pem \
    --certificate-identity https://github.com/fermyon/spin/.github/workflows/release.yml@refs/tags/v1.0.0-rc.2 \
    --certificate-oidc-issuer https://token.actions.githubusercontent.com/ \
    --certificate-github-workflow-sha 5dfe30330234d3fb22512ad5ebd70d584436a4e1 \
    spin

If the verification passed, you should see:

Verified OK

As always, thanks to contributors old and new for helping improve Spin on a daily basis! 🎉

What's Changed

• return 405 instead of panicking on unsupported method by @dicej in https://github.com/fermyon/spin/pull/1249
• update version to next anticipated release by @michelleN in https://github.com/fermyon/spin/pull/1251
• ci: Run build workflow on v* branches by @lann in https://github.com/fermyon/spin/pull/1252
• Backport CI update to v1.0 branch by @lann in https://github.com/fermyon/spin/pull/1255
• Fix direct mounts backport by @lann in https://github.com/fermyon/spin/pull/1271
• [Backport v1.0] ci(release.yml): sign binaries with cosign by @vdice in https://github.com/fermyon/spin/pull/1284
• [Backport v1.0] chore: clean up some command help text by @vdice in https://github.com/fermyon/spin/pull/1293
• [Backport v1.0] Print digest on registry push by @vdice in https://github.com/fermyon/spin/pull/1289
• [Backport v1.0] introduce add_key_value_pair to cloud::Client by @vdice in https://github.com/fermyon/spin/pull/1291
• [Backport v1.0] In spin plugin list, do not print prerelease warnings ahead of list by @vdice in https://github.com/fermyon/spin/pull/1294
• [Backport v1.0] Update runtime config system and add spin up --state-dir flag by @lann in https://github.com/fermyon/spin/pull/1288
• [Backport v1.0] feat(deploy): Add deploy flags to seed key/values by @vdice in https://github.com/fermyon/spin/pull/1290
• [Backport v1.0] Unbindle the up command and app manifest by @vdice in https://github.com/fermyon/spin/pull/1299
• [Backport v1.0] fix(cli): Rename --key-values to --key-value on deploy command by @vdice in https://github.com/fermyon/spin/pull/1300
• [Backport v1.0] chore(cli): rm bindle commands by @michelleN in https://github.com/fermyon/spin/pull/1301
• Updating version 1.0.0-rc.2 by @melissaklein24 in https://github.com/fermyon/spin/pull/1303

New Contributors

• @melissaklein24 made their first contribution in https://github.com/fermyon/spin/pull/1303

Full Changelog: https://github.com/fermyon/spin/compare/v1.0.0-rc.1...v1.0.0-rc.2

Spin v1.0.0-rc.1

The Spin v1.0.0-rc.1 is the first release candidate for the Spin 1.0 release! We would love your help in testing this release. If you notice any issues, please feel free to open an issue or pull request. We would love to thank you for your efforts in helping us test with a Spin t-shirt. Once you've opened an issue or pull request, we will reach out for more info on where to send your Spin swag!

As always, thanks to contributors old and new for helping improve Spin on a daily basis! 🎉

What's Changed

• Bumped version to 0.11.0-pre0 by @tpmccallum in https://github.com/fermyon/spin/pull/1222
• fix code coverage by @rajatjindal in https://github.com/fermyon/spin/pull/1223
• Add key/value end to end test by @kate-goldenring in https://github.com/fermyon/spin/pull/1219
• fix cargo clippy by @rajatjindal in https://github.com/fermyon/spin/pull/1224
• feat(templates): update sdk to v0.10.0 by @github-actions in https://github.com/fermyon/spin/pull/1225
• add e2e tests for php, swift, oci, longevity by @rajatjindal in https://github.com/fermyon/spin/pull/1215
• Fix registry login error if directory does not exist by @itowlson in https://github.com/fermyon/spin/pull/1231
• chore: Refactor spin up OCI support by @lann in https://github.com/fermyon/spin/pull/1230
• use token to login by @rajatjindal in https://github.com/fermyon/spin/pull/1201
• config: Change EnvProvider prefix from SPIN_APP_ to SPIN_CONFIG_ by @lann in https://github.com/fermyon/spin/pull/1234
• Validate allowed key-value stores by @itowlson in https://github.com/fermyon/spin/pull/1235
• Refactor UpCommand by @lann in https://github.com/fermyon/spin/pull/1236
• Change base path for key value example app by @kate-goldenring in https://github.com/fermyon/spin/pull/1239
• chore: update examples and templates to spin_manifest_version by @fibonacci1729 in https://github.com/fermyon/spin/pull/1238
• bump Wasmtime version to 5.0.1 by @dicej in https://github.com/fermyon/spin/pull/1243
• feat(templates): update sdk to v0.10.1 by @github-actions in https://github.com/fermyon/spin/pull/1244
• Upgrade cargo-vet and add imports by @bholley in https://github.com/fermyon/spin/pull/1240
• Point simple rust testcase to local SDK by @kate-goldenring in https://github.com/fermyon/spin/pull/1248
• update version to v1.0.0-rc.1 by @michelleN in https://github.com/fermyon/spin/pull/1247

New Contributors

• @bholley made their first contribution in https://github.com/fermyon/spin/pull/1240

Full Changelog: https://github.com/fermyon/spin/compare/v0.10.0...v1.0.0-rc.1

This updates Spin to Wasmtime 5.0.1, fixing a critical security vulnerability. Additional detail will be provided in CVE-2023-26489. All users are encouraged to update.