Killin’ some bugs
We’re finishing the week by crushing some small bugs. Some highlights:
- Fixed a potential panic related to LSP configuration
- Fixed an authorization bug for MiniMax that was affecting a minority of the users
- IO.net API keys are now properly validated
- Fixed a bug related to thinking in the chosen small model
- Fixed a bug where Crush would struggle with certain disks on Windows
Have an incredible weekend ✨
Charm
Changelog
- fix(lsp): prevent nil client from being stored in clients map by @acmacalister in #2262
- fix: use
Authorizationheader for MiniMax by @taoeffect in #2269 - fix: proper validate io.net api keys by @andreynering in #2272
- fix(agent): pass correct model config to small provider builder by @0xarcher in #2236
- fix: more reliably detect windows drive by @andreynering in #2273
Verifying the artifacts
First, download the checksums.txt file and the checksums.txt.sigstore.json file files, for example, with wget:
wget 'https://github.com/charmbracelet/crush/releases/download/v0.43.4/checksums.txt'
wget 'https://github.com/charmbracelet/crush/releases/download/v0.43.4/checksums.txt.sigstore.json'Then, verify it using cosign:
cosign verify-blob \
--certificate-identity 'https://github.com/charmbracelet/meta/.github/workflows/goreleaser.yml@refs/heads/main' \
--certificate-oidc-issuer 'https://token.actions.githubusercontent.com' \
--bundle 'checksums.txt.sigstore.json' \
./checksums.txtIf the output is Verified OK, you can safely use it to verify the checksums of other artifacts you downloaded from the release using sha256sum:
sha256sum --ignore-missing -c checksums.txtDone! You artifacts are now verified!
Thoughts? Questions? We love hearing from you. Feel free to reach out on X, Discord, Slack, The Fediverse, Bluesky.