Skip to content

Releases: grunch/rana

v0.5.5

15 Nov 14:19
9eadfca
Compare
Choose a tag to compare

Verifying the Release

In order to verify the release, you'll need to have gpg or gpg2 installed on your system. Once you've obtained a copy (and hopefully verified that as well), you'll first need to import the keys that have signed this release if you haven't done so already:

curl https://raw.githubusercontent.com/grunch/rana/main/keys/negrunch.asc | gpg --import

Once you have the required PGP keys, you can verify the release (assuming manifest-negrunch.sig and manifest.txt are in the current directory) with:

gpg --verify manifest-negrunch.sig manifest.txt

gpg: Firmado el jue 03 ago 2023 15:07:05 -03
gpg:                usando RSA clave 1E41631D137BA2ADE55344F73852B843679AD6F0
gpg: Firma correcta de "Francisco Calderón <fjcalderon@gmail.com>" [absoluta]

That will verify the signature of the manifest file, which ensures integrity and authenticity of the archive you've downloaded locally containing the binaries. Next, depending on your operating system, you should then re-compute the sha256 hash of the archive with shasum -a 256 , compare it with the corresponding one in the manifest file, and ensure they match exactly.

What's Changed

New Contributors

Full Changelog: v0.5.4...v0.5.5

Rana v0.5.4

05 Jul 13:06
39b9921
Compare
Choose a tag to compare

Verifying the Release

In order to verify the release, you'll need to have gpg or gpg2 installed on your system. Once you've obtained a copy (and hopefully verified that as well), you'll first need to import the keys that have signed this release if you haven't done so already:

curl https://raw.githubusercontent.com/grunch/rana/main/keys/negrunch.asc | gpg --import

Once you have the required PGP keys, you can verify the release (assuming manifest-negrunch.sig and manifest.txt are in the current directory) with:

gpg --verify manifest-negrunch.sig manifest.txt

gpg: Firmado el jue 03 ago 2023 15:07:05 -03
gpg:                usando RSA clave 1E41631D137BA2ADE55344F73852B843679AD6F0
gpg: Firma correcta de "Francisco Calderón <fjcalderon@gmail.com>" [absoluta]

That will verify the signature of the manifest file, which ensures integrity and authenticity of the archive you've downloaded locally containing the binaries. Next, depending on your operating system, you should then re-compute the sha256 hash of the archive with shasum -a 256 , compare it with the corresponding one in the manifest file, and ensure they match exactly.

What's Changed

  • Simplify handling of default difficulty by @ok300 in #41
  • Revert "Simplify handling of default difficulty" by @ok300 in #43

Full Changelog: v0.5.2...v0.5.4

v0.5.2

09 Mar 12:49
fb960a3
Compare
Choose a tag to compare

What's Changed

New Contributors

Full Changelog: v0.5.0...v0.5.2

v0.5.0

01 Feb 16:04
627cf1e
Compare
Choose a tag to compare

What's Changed

  • Added mnemonic generation of keys and recover from mnemonic to keypair by @schlunsen in #24

Full Changelog: v0.4.0...v0.5.0

v0.4.0

29 Jan 21:50
febde58
Compare
Choose a tag to compare

What's Changed

New Contributors

Full Changelog: v0.3.4...v0.4.0

v0.3.4

09 Jan 13:31
9946f77
Compare
Choose a tag to compare
bumps version number