v0.7.1
·
273 commits
to main
since this release
03ba1ab
This commit was signed with the committer’s verified signature.
The key has expired.
aymanbagabas
Ayman Bagabas
Local browsing, webhooks, stash, and blame views! You can now browse local repositories by running soft in any repo to see commits, files, diffs, stash, and blame.
Soft Serve now supports repository webhooks so you can get notifications about repository changes. See repository webhooks for more information.
Changelog
New Features
- 8f182ec: feat(ci): add codecov config (@aymanbagabas)
- 56a17a3: feat(ui): show committer in blame (@aymanbagabas)
- 02e1617: feat: browse local repositories (#369) (@aymanbagabas)
- e2e79fe: feat: job config (#402) (@jolheiser)
- 29de922: feat: update to latest env (#412) (@caarlos0)
Bug fixes
- f76ae7a: fix(config): add jobs default config (@aymanbagabas)
- 03ba1ab: fix(gomod): use git-module fork (@aymanbagabas)
- 35582d2: fix: remove unwanted gitattributes (@aymanbagabas)
- f915f4d: refactor,fix: add rename lfs objects migration (#409) (@aymanbagabas)
Dependency updates
- da50842: feat(deps): bump github.com/charmbracelet/keygen from 0.4.3 to 0.5.0 (#398) (@dependabot[bot])
- 9503c88: feat(deps): bump github.com/charmbracelet/lipgloss from 0.8.0 to 0.9.1 (#401) (@dependabot[bot])
- d1ab2b5: feat(deps): bump github.com/charmbracelet/log from 0.2.4 to 0.2.5 (#394) (@dependabot[bot])
- a735362: feat(deps): bump github.com/charmbracelet/wish from 1.1.1 to 1.2.0 (#407) (@dependabot[bot])
- e319131: feat(deps): bump github.com/go-git/go-git/v5 from 5.9.0 to 5.10.0 (#404) (@dependabot[bot])
- 5852219: feat(deps): bump github.com/google/uuid from 1.3.0 to 1.3.1 (#405) (@dependabot[bot])
- 7ec3a38: feat(deps): bump github.com/google/uuid from 1.3.1 to 1.4.0 (#406) (@dependabot[bot])
- 6662e1a: feat(deps): bump golang.org/x/net from 0.15.0 to 0.17.0 (#400) (@dependabot[bot])
- 5df79ee: feat(deps): bump golang.org/x/sync from 0.3.0 to 0.4.0 (#395) (@dependabot[bot])
Other work
- 0846323: Repository webhooks (#375) (@aymanbagabas)
- 139be67: doc: update readme (#413) (@aymanbagabas)
- 0f41cab: refactor: rename pkgs (#408) (@aymanbagabas)
Verifying the artifacts
First, download the checksums.txt file, for example, with wget:
wget 'https://github.com/charmbracelet/soft-serve/releases/download/v0.7.1/checksums.txt'Then, verify it using cosign:
cosign verify-blob \
--certificate-identity 'https://github.com/charmbracelet/meta/.github/workflows/goreleaser.yml@refs/heads/main' \
--certificate-oidc-issuer 'https://token.actions.githubusercontent.com' \
--cert 'https://github.com/charmbracelet/soft-serve/releases/download/v0.7.1/checksums.txt.pem' \
--signature 'https://github.com/charmbracelet/soft-serve/releases/download/v0.7.1/checksums.txt.sig' \
./checksums.txtIf the output is Verified OK, you can safely use it to verify the checksums of other artifacts you downloaded from the release using sha256sum:
sha256sum --ignore-missing -c checksums.txtDone! You artifacts are now verified!
Thoughts? Questions? We love hearing from you. Feel free to reach out on Twitter, The Fediverse, or on Discord.
Contributors
caarlos0, aymanbagabas, and 2 other contributors