You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Bumped github.com/theupdateframework/go-tuf/v2 to 2.4.2 (#13) — the TUF client used by update's trust-root/signature verification, vendored into the release binary.
Fixed
npm ci lockfile drift fixed. The per-platform optionalDependencies subentries in package-lock.json (node_modules/@fateforge/gitlab-cli-*) were missing their version, so once those platform packages were published, npm ci failed its consistency check (lock file's <pkg>@ does not satisfy <pkg>@<version>). The version bump (scripts/version-files.js) now syncs the lockfile platform subentries too, and check-version.js guards them, so the drift can't silently recur.