winget install --id gittuf.gittuf
About gittuf
A security layer for Git repositories
What's new in 0.15.0
This release contains performance and significant testing improvements across the codebase, and includes improvements for the gittuf transport. A new TUI is also included, and is a work-in-progress. Changelog Added - The TUI has been refreshed with a new coat of paint - go-git has been upgraded to v6 Updated - Improved bounds checking for git-remote-gittuf - Improved RSL entry parsing - Increased testing coverage across multiple packages - Fixed test various failures on Windows - Fixed Git config issues in various tests - Updated various dependencies and CI workflows Removed - Removed gittuf dev CLI commands
Version history
| Version | Updated | Notes |
|---|---|---|
| 0.15.0 | Unknown | This release contains performance and significant testing improvements across the codebase, and includes improvements for the gittuf transport. A new TUI is also included, and is a work-in-progress. Changelog Added - The... |
| 0.14.1 | Unknown | This release ships some small improvements, and fixes security vulnerabilities in dependencies. See the release notes on GitHub for more information. Changelog Added - Added unit tests for the TUI Updated - Increased tes... |
| 0.14.0 | Unknown | This release improves our testing coverage, makes various improvements across the codebase, and removes support for the legacy securesystemslib key format. This release also fixes security vulnerabilities, see the adviso... |
| 0.13.1 | Unknown | This release is a follow-up to `v0.13.0`, with artifacts now being built properly. Starting from this release, we now ship both attested SBOMs and build provenance. See https://github.com/gittuf/gittuf/attestations/. Fun... |
| 0.12.0 | Unknown | This release fixes a bug in the verification and recovery workflow that incorrectly prevents verification from continuing even after a policy violation has been fixed. Changelog Added Added CLI documentation for various... |
| 0.11.0 | Unknown | This release includes improved documentation of various gittuf commands, new verification capabilities for gittuf's experimental multi-repository support, and more. Changelog Added -Added support for verifying policy sta... |
| 0.10.2 | Unknown | This is a patch release with an update to how gittuf handles the GitHub API client and the token required to authenticate with the API. Changelog Updated - Updated how GitHub API tokens are loaded to prevent issues with... |
| 0.10.1 | Unknown | This is a patch release for the changes merged since our beta release. Changelog Added - Added a `HasPolicy` API to check if a repository has gittuf policy defined - Added documentation on how to inspect gittuf metadata... |
| 0.9.0 | Unknown | This release includes multiple quality-of-life improvements as well as changes to support gittuf policies that work across multiple repositories. This is possibly our last alpha minor version! Changelog Added - Added a t... |
| 0.7.0 | Unknown | Release notes |
| 0.6.2 | Unknown | Release notes |
| 0.5.2 | Unknown | Release notes |