- Work around re-adding cert bug on osx
- allow http/https in public key path
- issuing future certificates
- can override default 2 hour window for cert downloads from S3
- definition of principals per environment in config
- remove the private key first if we already have a cert loaded prior to adding it to the agent
- Support specifying the principals in use
- Add functionality for signing host keys
- Add testing via travis-ci
- Add environment-specific public keys
- Run ssh-add as part of get cert so openssh will detect the new cert
- For auditing, require that a reason be specified when signing
- First PyPI release