v0.6.0

Changelog

New Features

• a26ddab: feat: update to go 1.18 (@caarlos0)

Bug fixes

• c5ec39e: fix(ci): remove soft-serve workflow (@aymanbagabas)
• 12e011f: fix: gitignore (@caarlos0)

Dependency updates

• 68ae5bd: feat(deps): bump github.com/charmbracelet/lipgloss from 0.6.0 to 0.7.1 (#59) (@dependabot[bot])
• b87ab00: feat(deps): bump github.com/charmbracelet/lipgloss from 0.7.1 to 0.8.0 (#80) (@dependabot[bot])
• 5e9d559: feat(deps): bump github.com/matryer/is from 1.4.0 to 1.4.1 (#52) (@dependabot[bot])
• ed11118: feat(deps): bump github.com/mattn/go-isatty from 0.0.16 to 0.0.17 (#44) (@dependabot[bot])
• 59e2972: feat(deps): bump github.com/mattn/go-isatty from 0.0.17 to 0.0.18 (#61) (@dependabot[bot])
• 43465c7: feat(deps): bump github.com/mattn/go-isatty from 0.0.18 to 0.0.19 (#69) (@dependabot[bot])
• cdb96b0: feat(deps): bump github.com/mattn/go-tty from 0.0.4 to 0.0.5 (#67) (@dependabot[bot])
• 5376d91: feat(deps): bump github.com/muesli/termenv from 0.13.0 to 0.14.0 (#48) (@dependabot[bot])
• 49fc6af: feat(deps): bump github.com/muesli/termenv from 0.14.0 to 0.15.0 (#56) (@dependabot[bot])
• 0f51840: feat(deps): bump github.com/muesli/termenv from 0.15.1 to 0.15.2 (#73) (@dependabot[bot])
• 170bf5c: feat(deps): bump github.com/spf13/cobra from 1.6.1 to 1.7.0 (#62) (@dependabot[bot])
• f68d35e: feat(deps): bump golang.org/x/crypto from 0.1.0 to 0.2.0 (#38) (@dependabot[bot])
• f664811: feat(deps): bump golang.org/x/crypto from 0.10.0 to 0.11.0 (#76) (@dependabot[bot])
• 64d9349: feat(deps): bump golang.org/x/crypto from 0.11.0 to 0.12.0 (#79) (@dependabot[bot])
• c8c2c8b: feat(deps): bump golang.org/x/crypto from 0.12.0 to 0.13.0 (#84) (@dependabot[bot])
• 0343664: feat(deps): bump golang.org/x/crypto from 0.13.0 to 0.14.0 (#86) (@dependabot[bot])
• 5caa0cc: feat(deps): bump golang.org/x/crypto from 0.2.0 to 0.3.0 (#39) (@dependabot[bot])
• 0fb7aef: feat(deps): bump golang.org/x/crypto from 0.3.0 to 0.4.0 (#43) (@dependabot[bot])
• 3692fc8: feat(deps): bump golang.org/x/crypto from 0.4.0 to 0.5.0 (#47) (@dependabot[bot])
• bde8e55: feat(deps): bump golang.org/x/crypto from 0.5.0 to 0.6.0 (#51) (@dependabot[bot])
• 166da22: feat(deps): bump golang.org/x/crypto from 0.6.0 to 0.7.0 (#54) (@dependabot[bot])
• d954ebd: feat(deps): bump golang.org/x/crypto from 0.7.0 to 0.8.0 (#65) (@dependabot[bot])
• e6341cf: feat(deps): bump golang.org/x/crypto from 0.8.0 to 0.9.0 (#68) (@dependabot[bot])
• 051eaf7: feat(deps): bump golang.org/x/crypto from 0.9.0 to 0.10.0 (#72) (@dependabot[bot])
• 5f7ac12: feat(deps): bump golang.org/x/term from 0.1.0 to 0.2.0 (#37) (@dependabot[bot])
• d2d1cc7: feat(deps): bump golang.org/x/term from 0.10.0 to 0.11.0 (#78) (@dependabot[bot])
• 2108d23: feat(deps): bump golang.org/x/term from 0.11.0 to 0.12.0 (#82) (@dependabot[bot])
• f53f2a9: feat(deps): bump golang.org/x/term from 0.12.0 to 0.13.0 (#85) (@dependabot[bot])
• 3da14cd: feat(deps): bump golang.org/x/term from 0.2.0 to 0.3.0 (#42) (@dependabot[bot])
• 4fe3696: feat(deps): bump golang.org/x/term from 0.4.0 to 0.5.0 (#49) (@dependabot[bot])
• 24d5f5b: feat(deps): bump golang.org/x/term from 0.5.0 to 0.6.0 (#55) (@dependabot[bot])
• e26df9f: feat(deps): bump golang.org/x/term from 0.6.0 to 0.7.0 (#63) (@dependabot[bot])
• 012adb0: feat(deps): bump golang.org/x/term from 0.7.0 to 0.8.0 (#66) (@dependabot[bot])
• 4684a21: feat(deps): bump golang.org/x/term from 0.8.0 to 0.9.0 (#70) (@dependabot[bot])
• 5ba6b49: feat(deps): bump golang.org/x/text from 0.10.0 to 0.11.0 (#74) (@dependabot[bot])
• 34a9e91: feat(deps): bump golang.org/x/text from 0.11.0 to 0.12.0 (#77) (@dependabot[bot])
• 89ea1f7: feat(deps): bump golang.org/x/text from 0.12.0 to 0.13.0 (#81) (@dependabot[bot])
• 396859f: feat(deps): bump golang.org/x/text from 0.4.0 to 0.5.0 (#40) (@dependabot[bot])
• db41476: feat(deps): bump golang.org/x/text from 0.6.0 to 0.7.0 (#50) (@dependabot[bot])
• cec2e89: feat(deps): bump golang.org/x/text from 0.7.0 to 0.8.0 (#53) (@dependabot[bot])
• 5785375: feat(deps): bump golang.org/x/text from 0.8.0 to 0.9.0 (#64) (@dependabot[bot])
• 4ca2b44: feat(deps): bump golang.org/x/text from 0.9.0 to 0.10.0 (#71) (@dependabot[bot])

Documentation updates

• 87ab608: docs: update license (@caarlos0)

---

Verifying the artifacts

First, download the checksums.txt file, for example, with wget:

wget 'https://github.com/charmbracelet/melt/releases/download/v0.6.0/checksums.txt'

Then, verify it using cosign:

cosign verify-blob \
  --certificate-identity 'https://github.com/charmbracelet/meta/.github/workflows/goreleaser.yml@refs/heads/main' \
  --certificate-oidc-issuer 'https://token.actions.githubusercontent.com' \
  --cert 'https://github.com/charmbracelet/melt/releases/download/v0.6.0/checksums.txt.pem' \
  --signature 'https://github.com/charmbracelet/melt/releases/download/v0.6.0/checksums.txt.sig' \
  ./checksums.txt

If the output is Verified OK, you can safely use it to verify the checksums of other artifacts you downloaded from the release using sha256sum:

sha256sum --ignore-missing -c checksums.txt

Done! You artifacts are now verified!

Thoughts? Questions? We love hearing from you. Feel free to reach out on Twitter, The Fediverse, or on Discord.