Releases · tbckr/trident · GitHub

24 May 14:58

Immutable

v0.15.0 Latest

Latest

Changelog

Features

436738d feat(ci): extend tool-version checker to docker image pins
10a4b8a feat(ci): integrate betterleaks secret scanning
a7d81af feat(ci): integrate semgrep pattern-based SAST

Bug Fixes

dab5809 fix(ci): chown workspace to container user for betterleaks scan
23a343e fix(ci): mark workspace as safe.directory in betterleaks container
71985ab fix(ci): use --system git config for betterleaks safe.directory
e78ef59 fix(deps): bump golang.org/x/net to v0.55.0
b644dc5 fix(deps): bump golangci-lint from v2.12.1 to v2.12.2

Assets 20

checksums.txt

sha256:2ce386a17b8af1478a16cc75ff21dcebd7395420a2f32cf23eb2bb7a09d8b4a5

1.54 KB 2026-05-24T14:58:38Z
trident_0.15.0.cdx.json

sha256:9f59d3aebd13dcea7a8ce8b8cadf6c7c009d6334b40f05c67d07c9041b43e521

96 KB 2026-05-24T14:58:37Z
trident_0.15.0.openvex.json

sha256:4920c7dd63bb5a08ed1caf861f7e7a6f99f4bbe9affb490e1e023fe4fe090bcf

9.94 KB 2026-05-24T14:58:38Z
trident_0.15.0_Darwin_arm64.tar.gz

sha256:ff3a573697115473ec7920a1a69256610dae36c0d37f36e1d85521436a5301a6

6.81 MB 2026-05-24T14:58:35Z
trident_0.15.0_Darwin_x86_64.tar.gz

sha256:d147b99bdde00db31f1c045e2be2a691c56bcd586c6985e4d3bb0c60fb86bbe6

7.33 MB 2026-05-24T14:58:35Z
trident_0.15.0_linux_amd64.apk

sha256:d2b79851a2605662c8618b8808f38febd1927ab26262a08b4a0c4bb26edcaefd

7.43 MB 2026-05-24T14:58:36Z
trident_0.15.0_linux_amd64.deb

sha256:f02d1b2bd655a04360746b1ae64f0a4c7a020f2863b6765587bfaf0f1c0e9ff7

7.19 MB 2026-05-24T14:58:37Z
trident_0.15.0_linux_amd64.pkg.tar.zst

sha256:64c13e410798ff5a1b149c5402934fa87dbc2ba0ef80781be3dbeab20e52a027

7.11 MB 2026-05-24T14:58:37Z
trident_0.15.0_linux_amd64.rpm

sha256:a8cae6daff7d95d257911d0bc3aad041012210d05fbdf698b8380e7a26ebdb59

7.18 MB 2026-05-24T14:58:36Z
trident_0.15.0_linux_arm64.apk

sha256:59ee59816c8e242763d620422ace088236b97533c1ef6286ab00ac8cdc57b0a3

6.73 MB 2026-05-24T14:58:37Z
Source code (zip)

2026-05-24T14:55:21Z
Source code (tar.gz)

2026-05-24T14:55:21Z
Release attestation (json)

2026-05-24T14:55:21Z

08 May 09:49

Immutable

v0.14.1

Changelog

Bug Fixes

713ce3a fix(deps): bump go 1.26.3 + golang.org/x/net v0.53.0
32596b7 fix(tools): parse goreleaser version across multi-file pin in check-tool-versions.sh

Assets 20

26 Apr 09:40

Immutable

v0.14.0

Changelog

Features

a7e1ab6 feat(devshell): add direnv support for nix flake

Assets 20

06 Apr 10:04

Immutable

v0.13.1

Changelog

Features

0e73366 feat(release): add optional kind parameter to release target
c927939 feat(skills): add tool-version-update skill for automated Go tool pinning updates

Bug Fixes

15edbe9 fix(tools): include goreleaser-lint.yml in check-tool-versions.sh registry

Other

18e4b82 refactor(release): unify artifact naming to consistent underscore pattern

Assets 20

04 Apr 17:27

Immutable

v0.13.0

Changelog

Features

a4974d0 feat(release): add OpenVEX vulnerability assessment to release artifacts

Other

2891423 refactor: simplify verify-release script to attestation-only

Assets 20

31 Mar 21:40

Immutable

v0.12.0

Changelog

Features

92d7d5e feat(ci): improve OpenSSF Scorecard checks
5d1720b feat(ci): switch to GitHub-native SLSA provenance
f425677 feat: add tag ruleset, workflow permissions, and CODEOWNERS to hardening script
9effd68 feat: enforce branch integrity and tag rules for admins in hardening script

Bug Fixes

74c50b0 fix(ci): correct imposter commit SHA for github/codeql-action v3.28.18
10f75ac fix(ci): correct imposter commit SHA for ossf/scorecard-action v2.4.3
3cd387a fix(ci): correct pinned SHA for ossf/scorecard-action v2.4.3
d1b1d5a fix: pin required status checks to GitHub Actions source
02dd85a fix: quote bracket arguments in harden-repo.sh to resolve shellcheck SC2102
beec4fd fix: remove unused nolint directive in download.go

Other

6be51df ci(codeql): restrict triggers to Go code changes
e97260d refactor: migrate branch protection to ruleset in harden-repo.sh

Assets 19

08 Mar 11:45

v0.11.1

Changelog

Bug Fixes

4cb917e fix: bump Go version to 1.26.1
fcdee9e fix: silence justfile release recipe with @ prefix

Assets 19

28 Feb 11:42

v0.11.0

Changelog

Features

7c7fae7 feat: add build, test, lint, and CI targets to justfile
e049f9e feat: add justfile targets and document development workflow
2457be4 feat: add justfile with release and flake-update targets
669bde0 feat: add release alias to justfile

Bug Fixes

770f0a6 fix: add tidy-check and license-check to justfile ci target
41117a3 fix: drop Version ldflags from Nix flake, add Date

Assets 19

28 Feb 11:04

v0.10.0

Changelog

Features

309c215 feat: add Nix flake for build, install, and dev shell
7009bdd feat: add man page generation to Nix flake

Assets 19

26 Feb 14:40

v0.9.1

Changelog

Bug Fixes

95cdbb2 fix: remove duplicate security vulnerability entry in issue templates
e8adcab fix: use basename for archive lookup in verify-release.sh

Assets 19