Content Provenance

Build provenance and verification for the LinnemanLabs content bundle

Provenance for the content bundle currently being served - source information, build tooling with checksums, and file inventory. The content bundle is a signed artifact containing all static HTML, CSS, JavaScript, and assets generated by Hugo. The server verifies bundle integrity at load time before serving any content.

Source: linnemanlabs-site on GitHub

Content Bundle Loading...

Loaded from — at —

—

Content Version

Bundle Identity

Content ID

—

Content Hash

—

Schema

—

Type

—

Source

Repository

—

Commit

—

Branch

—

Commit Date

—

Build Time

—

Build Environment

Build Host

—

Build User

—

Content Summary

—

Total Files

—

Total Size

—

File Types

File Type Breakdown

Build Tooling

Hugo

Static site generator

—

SHA256

—

Tailwind CSS

CSS framework

—

SHA256

—

HTML Tidy

HTML validation

—

SHA256

—

Git

Version control

—

Bash

Build shell

—

Runtime

Source

—

Loaded At

—

Server Time

—

Runtime Hash

—

Attestations

Attestations (coming soon!):

GitHub Actions workflow provenance (SLSA)
Sigstore signatures (keyless OIDC)
Content bundle signatures
TUF metadata verification

Show raw JSON