Container image
docker pull ghcr.io/strategicprojects/ruscker:0.2.4
Multi-arch (linux/amd64, linux/arm64). The attached
.tar.gz files are static musl binaries; the .deb files
install on Debian/Ubuntu via apt install ./ruscker_*.deb.
Each asset ships a matching .sha256.
Verifying signatures (cosign, keyless)
All artifacts are signed with cosign
via GitHub Actions OIDC — no keys to distribute.
Container image:
cosign verify ghcr.io/strategicprojects/ruscker:0.2.4 \
--certificate-identity-regexp '^https://github.com/StrategicProjects/ruscker/' \
--certificate-oidc-issuer https://token.actions.githubusercontent.com
A release asset (.sig + .pem are attached next to each file):
cosign verify-blob ruscker-linux-amd64.tar.gz \
--signature ruscker-linux-amd64.tar.gz.sig \
--certificate ruscker-linux-amd64.tar.gz.pem \
--certificate-identity-regexp '^https://github.com/StrategicProjects/ruscker/' \
--certificate-oidc-issuer https://token.actions.githubusercontent.com
What's Changed
- feat(spec-form): logo picker becomes a searchable modal (fixes overlap at scale) by @milkway in #727
- chore(release): bump workspace version 0.2.3 → 0.2.4 by @milkway in #728
Full Changelog: v0.2.3...v0.2.4
Contributors
milkway