Auto-updates
Lopload checks GitHub Releases for a new version:
- on startup, and
- at most every 24 hours while the app stays open.
When an update is available you get a “restart to update” prompt — never a forced or silent update.
Signature verification
Section titled “Signature verification”Updates are signed with a minisign
keypair and verified before install. The public key ships in the app’s
src-tauri/tauri.conf.json; there is no paid code-signing certificate
involved.
Running a fork?
Section titled “Running a fork?”Tagged release builds sign updater artifacts with a private key held in the main repo’s CI secrets, so a fork needs its own keypair. The one-time setup (generating a keypair, updating the updater config, adding CI secrets) is documented in the README.