v0.53.2

Installation and signature verification

Installation

By downloading binary from the release

For instance, if you are using Linux on an AMD64 architecture:

# Download the binary
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.53.2/ytt-linux-amd64

# Move the binary in to your PATH
mv kapp-linux-amd64 /usr/local/bin/ytt

# Make the binary executable
chmod +x /usr/local/bin/ytt

Via Homebrew (macOS or Linux)

$ brew tap carvel-dev/carvel
$ brew install ytt
$ ytt version  

Verify checksums file signature

The checksums file provided within the artifacts attached to this release is signed using Cosign with GitHub OIDC(Refer this page for cosign installation). To validate the signature of this file, run the following commands:

# Download the checksums file, certificate and signature
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.53.2/checksums.txt
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.53.2/checksums.txt.pem
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.53.2/checksums.txt.sig

# Verify the checksums file
cosign verify-blob checksums.txt \
  --certificate checksums.txt.pem \
  --signature checksums.txt.sig \
  --certificate-identity-regexp=https://github.com/carvel-dev \
  --certificate-oidc-issuer=https://token.actions.githubusercontent.com

Verify binary integrity

To verify the integrity of the downloaded binary, you can utilize the checksums file after having validated its signature.

# Verify the binary using the checksums file
sha256sum -c checksums.txt --ignore-missing

What's Changed

• Fix empty maps and list issue #817 #911 by @emh-jump

Full Changelog: v0.53.1...v0.53.2

📂 Files Checksum

0e9e75b7a5f59161d2413e9d6163a1a13218f270daa1c525656195d1fcef28f6  ./ytt-linux-arm64
18fe794d01c2539db39acb90994db0d8e51faa7892d0e749d74c29818017247a  ./ytt-linux-amd64
4cc85a5e954d651d547cdef1e673742d995a38b0840273a5897e5318185b4e18  ./ytt-darwin-arm64
641f84d65af7459ccaaa83694666bc9e5deb92b2b2dd94c34f51ddd94f0c69d2  ./ytt-windows-amd64.exe
7c825bfb2e11565904d23bd9b850fb73de3a73bf5019986d9f08807875a86c6b  ./ytt-windows-arm64.exe
b1d90bf73071c78edb62a0f37663c655c99a3203783593e6e7988c2eeee5f935  ./ytt-linux-riscv64
cc51c3040b91bb0871967f9960cd9286bafd334ffd153a86914b883f3adad9ef  ./ytt-darwin-amd64

v0.53.1

Installation and signature verification

Installation

By downloading binary from the release

For instance, if you are using Linux on an AMD64 architecture:

# Download the binary
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.53.1/ytt-linux-amd64

# Move the binary in to your PATH
mv kapp-linux-amd64 /usr/local/bin/ytt

# Make the binary executable
chmod +x /usr/local/bin/ytt

Via Homebrew (macOS or Linux)

$ brew tap carvel-dev/carvel
$ brew install ytt
$ ytt version  

Verify checksums file signature

The checksums file provided within the artifacts attached to this release is signed using Cosign with GitHub OIDC(Refer this page for cosign installation). To validate the signature of this file, run the following commands:

# Download the checksums file, certificate and signature
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.53.1/checksums.txt
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.53.1/checksums.txt.pem
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.53.1/checksums.txt.sig

# Verify the checksums file
cosign verify-blob checksums.txt \
  --certificate checksums.txt.pem \
  --signature checksums.txt.sig \
  --certificate-identity-regexp=https://github.com/carvel-dev \
  --certificate-oidc-issuer=https://token.actions.githubusercontent.com

Verify binary integrity

To verify the integrity of the downloaded binary, you can utilize the checksums file after having validated its signature.

# Verify the binary using the checksums file
sha256sum -c checksums.txt --ignore-missing

What's Changed

• Bump golang to 1.25.7 to fix CVEs in #976 from @CodesbyUnnati

Full Changelog: v0.53.0...v0.53.1

📂 Files Checksum

2eaafe06d5e22203da2b74819685f9fd06ddc0a5cd38afc458821824990c78c0  ./ytt-darwin-arm64
36adcaa1f02681b0e7ceb73bda70ab11e3880588b51a188fd0318f6009bdeb36  ./ytt-windows-amd64.exe
5e479410a478385f6209624765e21c9880c07c6528ce6ed5e3dcca1e8b4a5677  ./ytt-linux-arm64
6b250c85d94b6b0643a58129ebf37244edb519fb9bc4aded1a8508d542d94ed3  ./ytt-linux-riscv64
764dadb577e680fa8fd09a28d281c570cb0e75accebb2ab0a328ab24b4032cfe  ./ytt-darwin-amd64
cf675039fa1bde77ebd12ed79eeaa698f7d9862a2b5fd82078260974ec311649  ./ytt-windows-arm64.exe
ecdc1439e52139335e42a23d1aa8941f575c52e70e58da709d2bad5038ecadae  ./ytt-linux-amd64

v0.53.0

Installation and signature verification

Installation

By downloading binary from the release

For instance, if you are using Linux on an AMD64 architecture:

# Download the binary
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.53.0/ytt-linux-amd64

# Move the binary in to your PATH
mv kapp-linux-amd64 /usr/local/bin/ytt

# Make the binary executable
chmod +x /usr/local/bin/ytt

Via Homebrew (macOS or Linux)

$ brew tap carvel-dev/carvel
$ brew install ytt
$ ytt version  

Verify checksums file signature

The checksums file provided within the artifacts attached to this release is signed using Cosign with GitHub OIDC(Refer this page for cosign installation). To validate the signature of this file, run the following commands:

# Download the checksums file, certificate and signature
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.53.0/checksums.txt
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.53.0/checksums.txt.pem
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.53.0/checksums.txt.sig

# Verify the checksums file
cosign verify-blob checksums.txt \
  --certificate checksums.txt.pem \
  --signature checksums.txt.sig \
  --certificate-identity-regexp=https://github.com/carvel-dev \
  --certificate-oidc-issuer=https://token.actions.githubusercontent.com

Verify binary integrity

To verify the integrity of the downloaded binary, you can utilize the checksums file after having validated its signature.

# Verify the binary using the checksums file
sha256sum -c checksums.txt --ignore-missing

What's Changed

• Bump golang version to 1.25.6 to fix CVEs in #973 by @CodesbyUnnati
• Optimize OrderedMap string key comparison in #959 by @emh-jump

New Contributors

• @CodesbyUnnati made their first contribution in #973

Full Changelog: v0.52.2...v0.53.0

📂 Files Checksum

2e4986f44f3908a0a220b645587eab4d0ec70ff4a6818ca26d3a44e29e25f13c  ./ytt-linux-amd64
37fb4c7528e025582bc74a0692dded61f85e9192ddf4263fdebdeb8c7cd82660   ./ytt-darwin-amd64
403dcbd6fef85bf40a086348f25c0ae3a817ad761755df4fe8cf5276dad18995   ./ytt-darwin-arm64
5316ea78cdd03a65d4c508b8af57670b461057c4f0050de12661af7125ba2e16   ./ytt-windows-amd64.exe
581863d3b27474bfcbb6101bfe070dfc9a1e3d914b197a7195a6bbdc92a21fc4   ./ytt-windows-arm64.exe
9260208e471595fb32fc70bd7e2e0f5915ebe6b0663c0f944a627adb34806cf5   ./ytt-linux-riscv64
f4922e95801bc2b9b4baf553d4650b9300670e2821e20690026f1bfd78cf8cd5   ./ytt-linux-arm64

v0.52.2

Installation and signature verification

Installation

By downloading binary from the release

For instance, if you are using Linux on an AMD64 architecture:

# Download the binary
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.52.2/ytt-linux-amd64

# Move the binary in to your PATH
mv kapp-linux-amd64 /usr/local/bin/ytt

# Make the binary executable
chmod +x /usr/local/bin/ytt

Via Homebrew (macOS or Linux)

$ brew tap carvel-dev/carvel
$ brew install ytt
$ ytt version  

Verify checksums file signature

The checksums file provided within the artifacts attached to this release is signed using Cosign with GitHub OIDC(Refer this page for cosign installation). To validate the signature of this file, run the following commands:

# Download the checksums file, certificate and signature
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.52.2/checksums.txt
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.52.2/checksums.txt.pem
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.52.2/checksums.txt.sig

# Verify the checksums file
cosign verify-blob checksums.txt \
  --certificate checksums.txt.pem \
  --signature checksums.txt.sig \
  --certificate-identity-regexp=https://github.com/carvel-dev \
  --certificate-oidc-issuer=https://token.actions.githubusercontent.com

Verify binary integrity

To verify the integrity of the downloaded binary, you can utilize the checksums file after having validated its signature.

# Verify the binary using the checksums file
sha256sum -c checksums.txt --ignore-missing

What's Changed

• Bump golang to 1.24.11 in #970

Full Changelog: v0.52.1...v0.52.2

📂 Files Checksum

02e1db4bce02f72a48312efca36fd1feb0d356ce21029e42916a88b17577b877  ./ytt-darwin-arm64
295cc5eb40091ad66c1093b955b73f290b5336a0b702e6318ba67a691b4031cb  ./ytt-linux-riscv64
3abce3c1233e328e1cc11161b85d5c162fae04425ac1bbf4d29e6ba54781ff91  ./ytt-linux-arm64
5242b9078abd483da46f13f715254f415b6328b2d979af24a4074b56007a43ba  ./ytt-windows-arm64.exe
76d5355a5135c59a1791f420f3094579f775cbf2a987328f920a05e1338f1e1f  ./ytt-linux-amd64
8d7904ef61cd26e5bd94cd0e0cfc5cd4e7d5501845290034bfe87fee05cecb03  ./ytt-windows-amd64.exe
cde68e057a9a0a175eb7366bc8ab5f358f7ffb7ed736cfac8b37ef98444da918  ./ytt-darwin-amd64

v0.52.1

Installation and signature verification

Installation

By downloading binary from the release

For instance, if you are using Linux on an AMD64 architecture:

# Download the binary
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.52.1/ytt-linux-amd64

# Move the binary in to your PATH
mv kapp-linux-amd64 /usr/local/bin/ytt

# Make the binary executable
chmod +x /usr/local/bin/ytt

Via Homebrew (macOS or Linux)

$ brew tap carvel-dev/carvel
$ brew install ytt
$ ytt version  

Verify checksums file signature

The checksums file provided within the artifacts attached to this release is signed using Cosign with GitHub OIDC(Refer this page for cosign installation). To validate the signature of this file, run the following commands:

# Download the checksums file, certificate and signature
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.52.1/checksums.txt
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.52.1/checksums.txt.pem
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.52.1/checksums.txt.sig

# Verify the checksums file
cosign verify-blob checksums.txt \
  --certificate checksums.txt.pem \
  --signature checksums.txt.sig \
  --certificate-identity-regexp=https://github.com/carvel-dev \
  --certificate-oidc-issuer=https://token.actions.githubusercontent.com

Verify binary integrity

To verify the integrity of the downloaded binary, you can utilize the checksums file after having validated its signature.

# Verify the binary using the checksums file
sha256sum -c checksums.txt --ignore-missing

What's Changed

• Bump golang to 1.24.6 to fix CVEs by @devanshuVmware in #964

Full Changelog: v0.52.0...v0.52.1

📂 Files Checksum

1975e52b3b97bd9be72f4efb714562da6a80cf181f036ae1f86eec215e208498  ./ytt-darwin-amd64
490f138ae5b6864071d3c20a5a231e378cee7487cd4aeffc79dbf66718e65408  ./ytt-linux-amd64
7d86bd3299e43d1455201fc213d698bae7482cd88f3e05de2f935e6eab842db9  ./ytt-linux-arm64
a205f49267a44cd495e4c8b245754d8a216931a28ef29c78ae161c370a9b6117  ./ytt-darwin-arm64
a887653ace89a6c102646d685b01c6cb637aa2b1e0987b1be5a799ebefc893fa  ./ytt-windows-arm64.exe
b437deb4eb8c9ada3e1405272450cdf33a0450684609af7df2eaccf36f1c1c92  ./ytt-windows-amd64.exe
fb53d2c409448c948f845a7b0df7748a0b8ecae31d3246fb48fd99988acf3e0b  ./ytt-linux-riscv64

v0.52.0

Installation and signature verification

Installation

By downloading binary from the release

For instance, if you are using Linux on an AMD64 architecture:

# Download the binary
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.52.0/ytt-linux-amd64

# Move the binary in to your PATH
mv kapp-linux-amd64 /usr/local/bin/ytt

# Make the binary executable
chmod +x /usr/local/bin/ytt

Via Homebrew (macOS or Linux)

$ brew tap carvel-dev/carvel
$ brew install ytt
$ ytt version  

Verify checksums file signature

The checksums file provided within the artifacts attached to this release is signed using Cosign with GitHub OIDC(Refer this page for cosign installation). To validate the signature of this file, run the following commands:

# Download the checksums file, certificate and signature
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.52.0/checksums.txt
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.52.0/checksums.txt.pem
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.52.0/checksums.txt.sig

# Verify the checksums file
cosign verify-blob checksums.txt \
  --certificate checksums.txt.pem \
  --signature checksums.txt.sig \
  --certificate-identity-regexp=https://github.com/carvel-dev \
  --certificate-oidc-issuer=https://token.actions.githubusercontent.com

Verify binary integrity

To verify the integrity of the downloaded binary, you can utilize the checksums file after having validated its signature.

# Verify the binary using the checksums file
sha256sum -c checksums.txt --ignore-missing

What's Changed

• Add riscv64 binary release #944 by @mengzhuo
• Improve performance #954 by @emh-jump
• Fix linting issues and bump go by @devanshuVmware and @joaopapereira

Full Changelog: v0.51.2...v0.52.0

📂 Files Checksum

063cf006ddcb6592500c8bedb20850ffd332e058fd34c1abff781bb6ef68c590  ./ytt-windows-arm64.exe
4c222403a9a2d54d8bb0e0ca46f699ee4040a2bddd5ab3b6354efd2c85d3209f  ./ytt-linux-amd64
781f8950da84b2d2928b139eb38567584d9ddebc7e5a34fd97209ad61ae9cc65  ./ytt-linux-arm64
924eb899bdbb4b3652d941c7662acc434a7a35c07537e7cf48a7645b960a7ab5  ./ytt-darwin-amd64
a01005ec823b8cb048f6ac2962233ec340cf9040e254fee5c28d0e784da4ca49  ./ytt-windows-amd64.exe
d1d51f490b23891c03957c80ec8b63f97fb393f18a9f7bf024db75ef6960d743  ./ytt-linux-riscv64
f77bcbcd71802fcb55cb0333ed7e640e6cc6e9164b757af01a6ac69f6b503b47  ./ytt-darwin-arm64

v0.51.2

Installation and signature verification

Installation

By downloading binary from the release

For instance, if you are using Linux on an AMD64 architecture:

# Download the binary
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.51.2/ytt-linux-amd64

# Move the binary in to your PATH
mv kapp-linux-amd64 /usr/local/bin/ytt

# Make the binary executable
chmod +x /usr/local/bin/ytt

Via Homebrew (macOS or Linux)

$ brew tap carvel-dev/carvel
$ brew install ytt
$ ytt version  

Verify checksums file signature

The checksums file provided within the artifacts attached to this release is signed using Cosign with GitHub OIDC(Refer this page for cosign installation). To validate the signature of this file, run the following commands:

# Download the checksums file, certificate and signature
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.51.2/checksums.txt
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.51.2/checksums.txt.pem
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.51.2/checksums.txt.sig

# Verify the checksums file
cosign verify-blob checksums.txt \
  --certificate checksums.txt.pem \
  --signature checksums.txt.sig \
  --certificate-identity-regexp=https://github.com/carvel-dev \
  --certificate-oidc-issuer=https://token.actions.githubusercontent.com

Verify binary integrity

To verify the integrity of the downloaded binary, you can utilize the checksums file after having validated its signature.

# Verify the binary using the checksums file
sha256sum -c checksums.txt --ignore-missing

What's Changed

• Bump golang version to 1.23.7 by @devanshuVmware in #949
• golangci-lint linter fixes by @devanshuVmware in #951

Full Changelog: v0.51.1...v0.51.2

📂 Files Checksum

4fa87a81af4634099c3a1c7396d4d0f0b6fee9f4854b37a6a547d55bfca897c5  ./ytt-darwin-arm64
61ad01f1df9cc8344c786e93acb1f5707ded9e4b52e4ec55a0f6637f2af53bae  ./ytt-linux-amd64
669eb82f2a3f646c593af3e2b2b7088f902a609770a8034e37779e9121d67e07  ./ytt-windows-amd64.exe
a25dd1c8b74f276a6ef2b4c2d0b493f8aaf87839e90762aa3c444e0b7eec95c8  ./ytt-darwin-amd64
ae0bdc3aca64e71276f59679ea9253be5f88fc6880937ae1de3dd42a00492a8c  ./ytt-linux-arm64
c648786f8b5237f62169960e1df09efc17ecbbc8d83c1dd0d5edf815ee57ae55  ./ytt-windows-arm64.exe

v0.51.1

Installation and signature verification

Installation

By downloading binary from the release

For instance, if you are using Linux on an AMD64 architecture:

# Download the binary
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.51.1/ytt-linux-amd64

# Move the binary in to your PATH
mv kapp-linux-amd64 /usr/local/bin/ytt

# Make the binary executable
chmod +x /usr/local/bin/ytt

Via Homebrew (macOS or Linux)

$ brew tap carvel-dev/carvel
$ brew install ytt
$ ytt version  

Verify checksums file signature

The checksums file provided within the artifacts attached to this release is signed using Cosign with GitHub OIDC(Refer this page for cosign installation). To validate the signature of this file, run the following commands:

# Download the checksums file, certificate and signature
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.51.1/checksums.txt
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.51.1/checksums.txt.pem
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.51.1/checksums.txt.sig

# Verify the checksums file
cosign verify-blob checksums.txt \
  --certificate checksums.txt.pem \
  --signature checksums.txt.sig \
  --certificate-identity-regexp=https://github.com/carvel-dev \
  --certificate-oidc-issuer=https://token.actions.githubusercontent.com

Verify binary integrity

To verify the integrity of the downloaded binary, you can utilize the checksums file after having validated its signature.

# Verify the binary using the checksums file
sha256sum -c checksums.txt --ignore-missing

What's Changed

• Bump golang to 1.23.3 by @devanshuVmware in #937

Full Changelog: v0.51.0...v0.51.1

📂 Files Checksum

026a12ee7108ff2d1150eb1347d544367d92e993ade7b2d2727c4c8d13a47a6b  ./ytt-linux-amd64
1d6e054b9fb237ca18943b870a4c99b46503b79e6f8bc698be2b06cc414225b1  ./ytt-darwin-arm64
455ea8a02f6fa3ae7e885fb06977c653c758fd65dd79f94954114eb4a7cd39fe  ./ytt-windows-arm64.exe
55849cab41cf7780b0d26da416395cf77576a434a4bcf883b0e2a29944325e7c  ./ytt-linux-arm64
833dda4d66e1d16d97dd8435140205587ddee6de25de3e1bf2d8766ad071e574  ./ytt-darwin-amd64
c2a918ab38781dccd48e7ee5c87f2d78ecce6bb8a47c957e087d689fd555c6d0  ./ytt-windows-amd64.exe

v0.51.0

Installation and signature verification

Installation

By downloading binary from the release

For instance, if you are using Linux on an AMD64 architecture:

# Download the binary
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.51.0/ytt-linux-amd64

# Move the binary in to your PATH
mv kapp-linux-amd64 /usr/local/bin/ytt

# Make the binary executable
chmod +x /usr/local/bin/ytt

Via Homebrew (macOS or Linux)

$ brew tap carvel-dev/carvel
$ brew install ytt
$ ytt version  

Verify checksums file signature

The checksums file provided within the artifacts attached to this release is signed using Cosign with GitHub OIDC(Refer this page for cosign installation). To validate the signature of this file, run the following commands:

# Download the checksums file, certificate and signature
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.51.0/checksums.txt
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.51.0/checksums.txt.pem
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.51.0/checksums.txt.sig

# Verify the checksums file
cosign verify-blob checksums.txt \
  --certificate checksums.txt.pem \
  --signature checksums.txt.sig \
  --certificate-identity-regexp=https://github.com/carvel-dev \
  --certificate-oidc-issuer=https://token.actions.githubusercontent.com

Verify binary integrity

To verify the integrity of the downloaded binary, you can utilize the checksums file after having validated its signature.

# Verify the binary using the checksums file
sha256sum -c checksums.txt --ignore-missing

What's Changed

• Bump golang to 1.23.2 by @joaopapereira in #930
  • Added auto bump of go in a nightly action
• Fix issue with trailing comment affecting yamlfmt.Printer @ernstvonoelsen in #916

Full Changelog: v0.50.0...v0.51.0

📂 Files Checksum

3285a6263faca35253e73b7da54ee281cf21c7923e98a78a87328b695de96731  ./ytt-linux-arm64
9ed62a77a178232def4a1ab355a2bfa0f5153a5e7d35c065d16c6a343f2ab232  ./ytt-windows-amd64.exe
bc59563641e45044b742c06db1d9b7e41c2a50e5f9594cf1effc73ca09e1319e  ./ytt-darwin-arm64
f7ac37761607fefe06a4cc40840a3378a6e8365417d70d06f171cbc4d5469aca  ./ytt-linux-amd64
fa1badba07995154c3537502d453503e0994a49793d2f54e33ff9d0137de133c  ./ytt-darwin-amd64
ffd4e18c77f522e2bbe4ee33266c06e738e58e2a25ccdbd939b6a616bd808cda  ./ytt-windows-arm64.exe

v0.50.0

Installation and signature verification

Installation

By downloading binary from the release

For instance, if you are using Linux on an AMD64 architecture:

# Download the binary
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.50.0/ytt-linux-amd64

# Move the binary in to your PATH
mv kapp-linux-amd64 /usr/local/bin/ytt

# Make the binary executable
chmod +x /usr/local/bin/ytt

Via Homebrew (macOS or Linux)

$ brew tap carvel-dev/carvel
$ brew install ytt
$ ytt version  

Verify checksums file signature

The checksums file provided within the artifacts attached to this release is signed using Cosign with GitHub OIDC(Refer this page for cosign installation). To validate the signature of this file, run the following commands:

# Download the checksums file, certificate and signature
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.50.0/checksums.txt
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.50.0/checksums.txt.pem
curl -LO https://github.com/carvel-dev/ytt/releases/download/v0.50.0/checksums.txt.sig

# Verify the checksums file
cosign verify-blob checksums.txt \
  --certificate checksums.txt.pem \
  --signature checksums.txt.sig \
  --certificate-identity-regexp=https://github.com/carvel-dev \
  --certificate-oidc-issuer=https://token.actions.githubusercontent.com

Verify binary integrity

To verify the integrity of the downloaded binary, you can utilize the checksums file after having validated its signature.

# Verify the binary using the checksums file
sha256sum -c checksums.txt --ignore-missing

What's Changed

• Bump golang to 1.22.5 by @devanshuVmware in #923
• Print full path rather than RelativePath only by @ernstvonoelsen in #903

New Contributors

• @devanshuVmware made their first contribution in #923

Full Changelog: v0.49.0...v0.50.0

📂 Files Checksum

01bbd9490c48309909ef7e314fcaf284667017c31321dc4edc30e2edf0dfa1c1  ./ytt-windows-arm64.exe
4067a41d44d977b5bd492c227ae9cc62d803df788ec9f4d612f89090eb01e946  ./ytt-windows-amd64.exe
61dec6e00131f990db853afc4b7531c318bd3af3ba18f2cfdbc0d5e83a45c445  ./ytt-linux-amd64
d79f0b4189403c4142f5c646989de0769a316896a6096dfd1719605d313e8d1e  ./ytt-darwin-amd64
f38290c2666ddcf6feb4907f91033c4f41022b3fb84893c42d1f48948597b82a  ./ytt-linux-arm64
f3ce72031d34f0a3d909b1c971017bb3788bb786d3bb5cba1bf6d699255be643  ./ytt-darwin-arm64