This releases switches the Gemini client library used to my fork at v0.5.2. This means that --insecure is no longer required to access self-signed certs, and everything will just work.
TOFU is not implemented (and may never be), so gemget does not guarantee that no one is imitating the server. But now certificate expiry dates and domain names are checked, so expired or invalid certs will not be accessed unless you specify --insecure.
This also adds a timeout of 15 seconds to making a connection.