v1.4.1

Changelog

Bug fixes

• 8520cea: fix: add man page (#291) (@caarlos0)
• 2efc3d9: fix: do not show examples in subcommands (#289) (@caarlos0)
• 5722fe6: fix: improve completion cmd handling (#290) (@caarlos0)

Documentation updates

• 6abdbfb: docs(readme): fix typo (@meowgorithm)
• 956198c: docs: fix winget command with full package ID (#284) (@darkvertex)
• bf1dab7: docs: how to get completions (#288) (@caarlos0)

Other work

• 510bf64: README Edits (#285) (@maaslalani)
• 7af4a43: build: update gitignore (@caarlos0)
• a004009: build: update goreleaser config (@caarlos0)

---

Verifying the artifacts

First, download the checksums.txt file, for example, with wget:

wget 'https://github.com/charmbracelet/mods/releases/download/v1.4.1/checksums.txt'

Then, verify it using cosign:

cosign verify-blob \
  --certificate-identity 'https://github.com/charmbracelet/meta/.github/workflows/goreleaser.yml@refs/heads/main' \
  --certificate-oidc-issuer 'https://token.actions.githubusercontent.com' \
  --cert 'https://github.com/charmbracelet/mods/releases/download/v1.4.1/checksums.txt.pem' \
  --signature 'https://github.com/charmbracelet/mods/releases/download/v1.4.1/checksums.txt.sig' \
  ./checksums.txt

If the output is Verified OK, you can safely use it to verify the checksums of other artifacts you downloaded from the release using sha256sum:

sha256sum --ignore-missing -c checksums.txt

Done! You artifacts are now verified!

Thoughts? Questions? We love hearing from you. Feel free to reach out on Twitter, The Fediverse, or on Discord.