Builder Vault (TSM) Release 70.1.0 LTS

Versions

Client API: 61.3
Client Communication: 30.2
Database: 7.12.0
Node Communication: 34.1
Node Configuration: 24.2

Changelog

Client Communication:
  - Added end points for CBC encryption/decryption for the PKCS#11 module
Node Configuration:
  - OIDC Access Token configuration now supports hardcoded application ID, or application ID 
    based on a claim
  - Support for multiple loggers with different log levels
  - Support for AWS CloudWatch and syslog logging
  - Logging can now be configured either through a separate log configuration file, or as part 
    of the node configuration file
Client API:
  - Fixed TypeScript definitions for Node.js SDKv2
  - Added support for CKM_AES_CBC and CKM_AES_CBC_PAD in the PCKS#11 module
Patch changes (no effect on compatibility):
  - Added option to use a log file to the PKCS#11 module configuration

Mobile frameworks have been built using: golang.org/x/mobile v0.0.0-20250305212854-3a7bc9f8a4de

Details

• The PKCS#11 plugin now supports the CKM_AES_CBC and CKM_AES_CBC_PAD mechanisms.
• The MPC node log configuration can now be specified either as before (external file) or in the node configuration file itself. The log configuration is more flexible. It is possible to specify multiple loggers with different log levels, and there is also a logger for logging to AWS CloudWatch. See this for more info.
• It is now possible to map a client authenticating with OIDC to an application ID that is specified in the OIDC token. See more here.