v2.31.0

Compare Source

Pull Requests | Issues | aquaproj/aqua@v2.30.0...v2.31.0

Overview

Featuers

#​2978 #​2994 Support verifying packages with minisign
#​3052 Support passing variables

Fixes

#​3012 Fix typo temporal. Replace them with temporary
#​3017 #​3024 Stop using replace directive

Others

Update Go 1.22.5 to 1.22.6

Feature - Support verifying packages with minisign

#​2978 #​2994

Support verifying packages with minisign.

Why is the feature needed?

To install some packages securely.
For example, zig is signed by minisign.

Example Code

This feature is similar to Cosign and slsa-verifier.

https://aquaproj.github.io/docs/reference/registry-config/cosign/

This feature depends on minisign.
So aqua should install minisign transparently same as Cosign and slsa-verifier.

registry.yaml

minisign:
  enabled: true
  public_key: "RWSGOq2NVecA2UPNdBUZykf1CCb147pkmdtYxgb3Ti+JO/wCYvhbAb/U"

##### public_key_url: https://example/signature.pub

Feature - Support passing variables

#​3052

Add the optional field vars in aqua.yaml and Registry.

vars in Registry

e.g.

packages:
  - type: github_release
    repo_owner: indygreg
    repo_name: python-build-standalone
    asset: cpython-{{.Vars.python_version}}+{{.Version}}-{{.Arch}}-{{.OS}}-install_only.{{.Format}} # .Vars.python_version
    vars:
      - name: python_version
        required: true

##### ...

vars is a list of variables.
Fields of a variable

• name: string (Required): A variable name
• required: boolean (Optional): If true, the variable is required. To use the package, users need to set the variable in aqua.yaml
• default: any (Optional): The default value of the variable

Variables are passed to template strings as .Vars.<template name>.

e.g.

asset: cpython-{{.Vars.python_version}}+{{.Version}}-{{.Arch}}-{{.OS}}-install_only.{{.Format}}

vars in aqua.yaml

e.g.

packages:
  - name: indygreg/python-build-standalone@20240726
    vars:
      python_version: 3.11.9

vars is a map of variables.
The key is a variable name and the value is a variable value.

v2.30.0

Compare Source

Pull Requests | Issues | aquaproj/aqua@v2.29.2...v2.30.0

Features

#​2918 #​3005 Use aqua-proxy and hard links instead of shell scripts and bat scripts on Windows

Document: https://github.com/aquaproj/aquaproj.github.io/pull/1049 https://aquaproj.github.io/docs/reference/lazy-install#on-windows

aqua doesn't use symbolic links on Windows because symbolic links have several issues on Windows.

1. Non-administrators can't create symbolic links by default on Windows
2. PowerShell doesn't use the final target of a symbolic link when starting a process or running a native command on Windows

aqua v2.29.2 or older used shell scripts and bat scripts instead of symbolic links and aqua-proxy.

#​885 #​892 #​893 aqua >= v1.12.0, aqua <= v2.29.2

But using shell scripts and bat scripts also had several issues.

1. Using both shell scripts and bat scripts is confusing
2. tools can't be executed on Nushell https://github.com/aquaproj/aqua/issues/2918#issuecomment-2223107022
3. bat scripts can't handle signals properly https://github.com/aquaproj/aqua/issues/2918#issuecomment-2228449541

So aqua v2.30.0 or later uses hard links and aqua-proxy instead of shell scripts and bat scripts. #​2918
aqua installs aqua-proxy and creates hard links to aqua-proxy on $(aqua root-dir)/bin directory.
When aqua updates aqua-proxy, aqua recreates hard links.
From aqua v2.30.0, aqua doesn't use bat scripts so you can remove $(aqua root-dir)/bat directory and remove $(aqua root-dir)/bat from PATH.

Others

#​3004 Update slsa-verifier to v2.6.0
#​3008 Update module github.com/goccy/go-yaml to v1.12.0

v2.29.2

Compare Source

Pull Requests | Issues | aquaproj/aqua@v2.29.1...v2.29.2

Bug Fixes

#​3001 Fix checksums of Cosign

Fixed a bug of aqua v2.29.1

v2.29.1

Compare Source

Pull Requests | Issues | aquaproj/aqua@v2.29.0...v2.29.1

Features

#​2965 list: Add an alias of command line option -installed

aqua list -i

Fixes

#​2981 Fix a bug that the shell completion of specific tools doesn't work

For detail, please see the following issues and pull request.

• https://github.com/lintnet/lintnet/issues/528#issuecomment-2192810380
• https://github.com/urfave/cli/issues/1932
• https://github.com/urfave/cli/pull/1938

Others

Update Go to 1.22.5

v2.29.0

Compare Source

Pull Requests | Issues | aquaproj/aqua@v2.28.1...v2.29.0

Features

#​2929 Support fish completion

Added a sub command aqua completion fish, which outputs scripts for fish completion

You can source the output to enable the completion.

aqua completion fish | source

Or you can write the output to a file.

https://fishshell.com/docs/current/completions.html#where-to-put-completions

aqua completion fish > ~/.config/fish/completions/aqua.fish

v2.28.1

Compare Source

Pull Requests | Issues | aquaproj/aqua@v2.28.0...v2.28.1

Bug Fixes

#​2904 generate: Fix a bug that aqua g -i fails if aqua.yaml doesn't have the field packages
#​2902 info: Fix a bug that user names aren't masked on Windows @​sapphi-red