Content Provenance
Build provenance and verification for the LinnemanLabs content bundle
Provenance for the content bundle currently being served - source information, build tooling with checksums, and file inventory. The content bundle is a signed artifact containing all static HTML, CSS, JavaScript, and assets generated by Hugo. The server verifies bundle integrity at load time before serving any content.
Source: linnemanlabs-site on GitHub
Content Bundle Loading...
Loaded from — at —
—
Content Version
Bundle Identity
Content ID
—
Content Hash
—
Schema
—
Type
—
Source
Build Environment
Build Host
—
Build User
—
Content Summary
—
Total Files
—
Total Size
—
File Types
File Type Breakdown
Build Tooling
Hugo
Static site generator
—
SHA256
—
Tailwind CSS
CSS framework
—
SHA256
—
HTML Tidy
HTML validation
—
SHA256
—
Git
Version control
—
Bash
Build shell
—
Runtime
Source
—
Loaded At
—
Server Time
—
Runtime Hash
—
Attestations
Attestations (coming soon!):
- GitHub Actions workflow provenance (SLSA)
- Sigstore signatures (keyless OIDC)
- Content bundle signatures
- TUF metadata verification