Trdl Versions Save

The universal solution for delivering your software updates securely from a trusted The Update Framework (TUF) repository.

v0.7.0

8 months ago

Changelog

Features

Installation

Download trdl Vault plugin binaries from here:

These binaries were signed with PGP and could be verified with this PGP public key.

Download trdl client binaries from here:

These binaries were signed with PGP and could be verified with this PGP public key.

For example, trdl client binary can be downloaded, verified with gpg and then installed to ~/bin/ on Linux with these commands:

curl -sSLO "https://tuf.trdl.dev/targets/releases/0.7.0/linux-amd64/bin/trdl" -O "https://tuf.trdl.dev/targets/signatures/0.7.0/linux-amd64/bin/trdl.sig"
curl -sSL https://trdl.dev/trdl-client.asc | gpg --import
gpg --verify trdl.sig trdl
install -D trdl ~/bin/trdl

v0.6.5

1 year ago

Changelog

Bug Fixes

  • deps: update logboek and lockgate (5183b51)

Installation

Download trdl Vault plugin binaries from here:

These binaries were signed with PGP and could be verified with this PGP public key.

Download trdl client binaries from here:

These binaries were signed with PGP and could be verified with this PGP public key.

For example, trdl client binary can be downloaded, verified with gpg and then installed to ~/bin/ on Linux with these commands:

curl -sSLO "https://tuf.trdl.dev/targets/releases/0.6.5/linux-amd64/bin/trdl" -O "https://tuf.trdl.dev/targets/signatures/0.6.5/linux-amd64/bin/trdl.sig"
curl -sSL https://trdl.dev/trdl-client.asc | gpg --import
gpg --verify trdl.sig trdl
install -D trdl ~/bin/trdl

v0.6.4

1 year ago

Changelog

Bug Fixes

  • update all dependencies (777331d)

Installation

Download trdl Vault plugin binaries from here:

These binaries were signed with PGP and could be verified with this PGP public key.

Download trdl client binaries from here:

These binaries were signed with PGP and could be verified with this PGP public key.

For example, trdl client binary can be downloaded, verified with gpg and then installed to ~/bin/ on Linux with these commands:

curl -sSLO "https://tuf.trdl.dev/targets/releases/0.6.4/linux-amd64/bin/trdl" -O "https://tuf.trdl.dev/targets/signatures/0.6.4/linux-amd64/bin/trdl.sig"
curl -sSL https://trdl.dev/trdl-client.asc | gpg --import
gpg --verify trdl.sig trdl
install -D trdl ~/bin/trdl

v0.6.3

1 year ago

Changelog

Build System

  • server: fix module requires Go 1.18 (bac9399)

Miscellaneous Chores

Installation

Download trdl Vault plugin binaries from here:

These binaries were signed with PGP and could be verified with this PGP public key.

Download trdl client binaries from here:

These binaries were signed with PGP and could be verified with this PGP public key.

For example, trdl client binary can be downloaded, verified with gpg and then installed to ~/bin/ on Linux with these commands:

curl -sSLO "https://tuf.trdl.dev/targets/releases/0.6.3/linux-amd64/bin/trdl" -O "https://tuf.trdl.dev/targets/signatures/0.6.3/linux-amd64/bin/trdl.sig"
curl -sSL https://trdl.dev/trdl-client.asc | gpg --import
gpg --verify trdl.sig trdl
install -D trdl ~/bin/trdl

v0.6.1

1 year ago

Changelog

Build System

  • client: fix module requires Go 1.18 (2a779b3)

Installation

Download trdl Vault plugin binaries from here:

These binaries were signed with PGP and could be verified with this PGP public key.

Download trdl client binaries from here:

These binaries were signed with PGP and could be verified with this PGP public key.

For example, trdl client binary can be downloaded, verified with gpg and then installed to ~/bin/ on Linux with these commands:

curl -sSLO "https://tuf.trdl.dev/targets/releases/0.6.1/linux-amd64/bin/trdl" -O "https://tuf.trdl.dev/targets/signatures/0.6.1/linux-amd64/bin/trdl.sig"
curl -sSL https://trdl.dev/trdl-client.asc | gpg --import
gpg --verify trdl.sig trdl
install -D trdl ~/bin/trdl

v0.6.0

1 year ago

Changelog

Features

  • server: prolong TUF roles expiration periodically (7df2cae)
  • server: update go-tuf library to upstream
  • client: update go-tuf library to upstream

Installation

Download trdl Vault plugin binaries from here:

These binaries were signed with PGP and could be verified with this PGP public key.

Download trdl client binaries from here:

These binaries were signed with PGP and could be verified with this PGP public key.

For example, trdl client binary can be downloaded, verified with gpg and then installed to ~/bin/ on Linux with these commands:

curl -sSLO "https://tuf.trdl.dev/targets/releases/0.6.0/linux-amd64/bin/trdl" -O "https://tuf.trdl.dev/targets/signatures/0.6.0/linux-amd64/bin/trdl.sig"
curl -sSL https://trdl.dev/trdl-client.asc | gpg --import
gpg --verify trdl.sig trdl
install -D trdl ~/bin/trdl

v0.5.0

1 year ago

Changelog

Features

  • client: export environment variable with a used group and channel in the source script (3c083a7)

Installation

Download trdl Vault plugin binaries from here:

These binaries were signed with PGP and could be verified with this PGP public key.

Download trdl client binaries from here:

These binaries were signed with PGP and could be verified with this PGP public key.

For example, trdl client binary can be downloaded, verified with gpg and then installed to ~/bin/ on Linux with these commands:

curl -sSLO "https://tuf.trdl.dev/targets/releases/0.5.0/linux-amd64/bin/trdl" -O "https://tuf.trdl.dev/targets/signatures/0.5.0/linux-amd64/bin/trdl.sig"
curl -sSL https://trdl.dev/trdl-client.asc | gpg --import
gpg --verify trdl.sig trdl
install -D trdl ~/bin/trdl

v0.4.2

1 year ago

Changelog

Bug Fixes

  • server: panic when checking signatures (8956c78)
  • server: fix signatures ignored when too many git notes exists for a repo (6c50b6b)

Installation

Download trdl Vault plugin binaries from here:

These binaries were signed with PGP and could be verified with this PGP public key.

Download trdl client binaries from here:

These binaries were signed with PGP and could be verified with this PGP public key.

For example, trdl client binary can be downloaded, verified with gpg and then installed to ~/bin/ on Linux with these commands:

curl -sSLO "https://tuf.trdl.dev/targets/releases/0.4.2/linux-amd64/bin/trdl" -O "https://tuf.trdl.dev/targets/signatures/0.4.2/linux-amd64/bin/trdl.sig"
curl -sSL https://trdl.dev/trdl-client.asc | gpg --import
gpg --verify trdl.sig trdl
install -D trdl ~/bin/trdl

v0.4.1

2 years ago

Changelog

Bug Fixes

  • client: autoclean ignores releases downloaded by previous trdl versions (6e7b770)

Installation

Download trdl Vault plugin binaries from here:

These binaries were signed with PGP and could be verified with this PGP public key.

Download trdl client binaries from here:

These binaries were signed with PGP and could be verified with this PGP public key.

For example, trdl client binary can be downloaded, verified with gpg and then installed to ~/bin/ on Linux with these commands:

curl -sSLO "https://tuf.trdl.dev/targets/releases/0.4.1/linux-amd64/bin/trdl" -O "https://tuf.trdl.dev/targets/signatures/0.4.1/linux-amd64/bin/trdl.sig"
curl -sSL https://trdl.dev/trdl-client.asc | gpg --import
gpg --verify trdl.sig trdl
install -D trdl ~/bin/trdl

v0.4.0

2 years ago

Changelog

Features

  • client: autoclean old downloaded releases (a2ea508)

Installation

Download trdl Vault plugin binaries from here:

These binaries were signed with PGP and could be verified with this PGP public key.

Download trdl client binaries from here:

These binaries were signed with PGP and could be verified with this PGP public key.

For example, trdl client binary can be downloaded, verified with gpg and then installed to ~/bin/ on Linux with these commands:

curl -sSLO "https://tuf.trdl.dev/targets/releases/0.4.0/linux-amd64/bin/trdl" -O "https://tuf.trdl.dev/targets/signatures/0.4.0/linux-amd64/bin/trdl.sig"
curl -sSL https://trdl.dev/trdl-client.asc | gpg --import
gpg --verify trdl.sig trdl
install -D trdl ~/bin/trdl