What is this?

Here you can download or independently verify my build of Cinny Web.
Updates are automatically applied and cryptographically verified by a custom script. If you don't trust this and think I might've been supply chain attacked, you can verify the build yourself using these resources.

You can also download Cinny Web directly from my server to bypass GitHub downloads (please be nice to my server though).


But what if I think you're the attacker and this is all a trap?

There's not much I can do about that except say that Cinny is entirely static on the server's side and there's nothing stopping you from downloading every resource and making sure it matches the tarball.

You can also host your own instance pretty easily and bypass the need to trust me at all.