Feature request: expose digests for assets in `assets` and `json` formats

From [the official announcement][1]:

> GitHub now automatically computes and displays SHA256 checksums (digests) for all uploaded release assets. These digests are generated at upload time, immutable, and let you verify that downloaded assets haven’t been altered since publishing. This improves integrity and transparency for every release.

---

In short, GitHub's [Releases REST API][2] now includes generated checksums for every asset. This would be incredibly useful to have in `lastversion --format json` or `lastversion --format assets` since it can help mitigate man-in-the-middle attacks and identify corrupted/damaged asset downloads.

[1]: https://github.blog/changelog/2025-06-03-releases-now-expose-digests-for-release-assets/ "Releases now expose digests for release assets - GitHub Changelog"
[2]: https://docs.github.com/en/rest/releases/releases?apiVersion=2022-11-28#get-a-release

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Feature request: expose digests for assets in `assets` and `json` formats #193

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Uh oh!

Feature request: expose digests for assets in assets and json formats #193

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions

Feature request: expose digests for assets in `assets` and `json` formats #193