youvocate

Verify your download

Check that your file is the file we published.

Until the builds are signed and notarized, verifying the checksum is the trust story. You compute a SHA-256 hash of the file you downloaded and compare it to the hash we publish. If they match, the file is untampered.

Compute the hash

On macOS, open Terminal and run:

On macOS, open Terminal and run: shasum -a 256 /path/to/the/downloaded/file

On Windows, open PowerShell and run:

On Windows, open PowerShell and run: Get-FileHash -Algorithm SHA256 C:\path\to\the\downloaded\file

Compare to the published hash

No published build exists yet, so there is no real hash to compare against. We will not show a placeholder hash here, because a checksum you cannot trust is worse than none. When a build ships, its real SHA-256 hash appears here and next to the download.