chore(deps): bump github.com/charmbracelet/wishlist from 0.14.0 to 0.14.1

[dependabot]

Bumps github.com/charmbracelet/wishlist from 0.14.0 to 0.14.1.

Release notes

Sourced from github.com/charmbracelet/wishlist's releases.

v0.14.1

Changelog

Bug fixes

• 1fdfd4fdd2e0364dd00b23869b023728529bcd51: fix: do not make raw terminal on windows (#241) (@​caarlos0)

Dependency updates

• 5b66da39adb48cd819970470377018e38298b80c: feat(deps): bump github.com/charmbracelet/log from 0.2.5 to 0.3.0 (#237) (@​dependabot[bot])
• 24ac4d65bac4728b71264dff081729b63e7516ff: feat(deps): bump github.com/charmbracelet/promwish from 0.6.0 to 0.7.0 (#234) (@​dependabot[bot])
• 9286acfd7190ea4edbe117e17f6929ae99bfefa2: feat(deps): bump github.com/spf13/cobra from 1.7.0 to 1.8.0 (#236) (@​dependabot[bot])
• 995aff27475cc3ecaaaf79ffd73769d50dc9fafd: feat(deps): bump golang.org/x/oauth2 from 0.13.0 to 0.14.0 (#240) (@​dependabot[bot])
• 328603afe6ecc44cdbb4e77eac13a248dee80a50: feat(deps): bump golang.org/x/term from 0.13.0 to 0.14.0 (#238) (@​dependabot[bot])

Documentation updates

• 5fada0c9f11d12d2b1f669fc54320827285b2429: docs: update scoop instructions (@​caarlos0)
• b0a8b892b33ffbeb560768f455171d1e38ba1308: docs: winget instructions (@​caarlos0)

---

First, download the checksums.txt file, for example, with wget:

wget 'https://github.com/charmbracelet/wishlist/releases/download/v0.14.1/checksums.txt'

Then, verify it using cosign:

cosign verify-blob \
  --certificate-identity 'https://github.com/charmbracelet/meta/.github/workflows/goreleaser.yml@refs/heads/main' \
  --certificate-oidc-issuer 'https://token.actions.githubusercontent.com' \
  --cert 'https://github.com/charmbracelet/wishlist/releases/download/v0.14.1/checksums.txt.pem' \
  --signature 'https://github.com/charmbracelet/wishlist/releases/download/v0.14.1/checksums.txt.sig' \
  ./checksums.txt

If the output is Verified OK, you can safely use it to verify the checksums of other artifacts you downloaded from the release using sha256sum:

sha256sum --ignore-missing -c checksums.txt

Done! You artifacts are now verified!

Thoughts? Questions? We love hearing from you. Feel free to reach out on Twitter, The Fediverse, or on Discord.

Commits

• b0a8b89 docs: winget instructions
• 1fdfd4f fix: do not make raw terminal on windows (#241)
• 995aff2 feat(deps): bump golang.org/x/oauth2 from 0.13.0 to 0.14.0 (#240)
• 328603a feat(deps): bump golang.org/x/term from 0.13.0 to 0.14.0 (#238)
• 5b66da3 feat(deps): bump github.com/charmbracelet/log from 0.2.5 to 0.3.0 (#237)
• 9286acf feat(deps): bump github.com/spf13/cobra from 1.7.0 to 1.8.0 (#236)
• 5fada0c docs: update scoop instructions
• 24ac4d6 feat(deps): bump github.com/charmbracelet/promwish from 0.6.0 to 0.7.0 (#234)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)