Release Watcher - mise-en-place v2026.4.21: untrust command and prune lockfile fixes

mise-en-place

project on GitHub > jdx/mise

last check : 2026-05-06 with 0 version(s) added

notes:

The front-end to your dev env Pronounced "MEEZ ahn plahs"

site: https://mise.jdx.dev/

Release list
2026.5.1: Aqua cosign and a reshim rescue	2026-05-05 RECENT
2026.5.0: Conda graduates, smarter pres, and Windows POSIX tasks	2026-05-03 RECENT
2026.4.28: Remote tasks pinned by commit SHA	2026-04-30 RECENT
2026.4.27: npm install args, smarter watch, and a macOS shim recursion fix	2026-04-29 RECENT
2026.4.25: Sharper task tooling and lockfile fixes	2026-04-28
2026.4.24: Resilient downloads and global pre- opt-in	2026-04-27
2026.4.23: Pre-s, libc preference, and a Node musl fix	2026-04-26
2026.4.21: untrust command and prune lockfile fixes	2026-04-25
2026.4.22: Repaired latest resolution and clearer deps output	2026-04-25
2026.4.20: Lockfile cleanup and path: fixes	2026-04-24
2026.4.19: OCI images, aqua templates, and more resilient installs	2026-04-23
2026.4.18: Deps management, aube support, and vfox plugin dependencies	2026-04-19
2026.4.17: install_before fixes, lockfile repair, and new registry tools	2026-04-18
2026.4.16: Tera templates in inline tasks, raw_args passthrough, and runtime symlink paths	2026-04-17
2026.4.15: Windows path separator fix and improved GitHub token detection	2026-04-16
2026.4.13: Remote cache, Go install_before, and task tool objects	2026-04-16
2026.4.14: Fix GitHub attestation verification for some tools	2026-04-15
2026.4.12: OS/arch filtering, task confirmation defaults, and npm supply chain improvements	2026-04-15
2026.4.11: Task dependency templates and npm semver range support	2026-04-13
2026.4.10: Fix spurious warnings from postinstall hooks running tasks	2026-04-12

Release list

2026.5.1: Aqua cosign and a reshim rescue

2026-05-05

RECENT

2026.5.0: Conda graduates, smarter pres, and Windows POSIX tasks

2026-05-03

RECENT

2026.4.28: Remote tasks pinned by commit SHA

2026-04-30

RECENT

2026.4.27: npm install args, smarter watch, and a macOS shim recursion fix

2026-04-29

RECENT

2026.4.25: Sharper task tooling and lockfile fixes

2026-04-28

2026.4.24: Resilient downloads and global pre- opt-in

2026-04-27

2026.4.23: Pre-s, libc preference, and a Node musl fix

2026-04-26

2026.4.21: untrust command and prune lockfile fixes

2026-04-25

2026.4.22: Repaired latest resolution and clearer deps output

2026-04-25

2026.4.20: Lockfile cleanup and path: fixes

2026-04-24

2026.4.19: OCI images, aqua templates, and more resilient installs

2026-04-23

2026.4.18: Deps management, aube support, and vfox plugin dependencies

2026-04-19

2026.4.17: install_before fixes, lockfile repair, and new registry tools

2026-04-18

2026.4.16: Tera templates in inline tasks, raw_args passthrough, and runtime symlink paths

2026-04-17

2026.4.15: Windows path separator fix and improved GitHub token detection

2026-04-16

2026.4.13: Remote cache, Go install_before, and task tool objects

2026-04-16

2026.4.14: Fix GitHub attestation verification for some tools

2026-04-15

2026.4.12: OS/arch filtering, task confirmation defaults, and npm supply chain improvements

2026-04-15

2026.4.11: Task dependency templates and npm semver range support

2026-04-13

2026.4.10: Fix spurious warnings from postinstall hooks running tasks

2026-04-12

A patch release that adds a new mise untrust command, teaches mise prune to skip tools tracked in lockfiles, and tightens GitHub asset auto-detection.

[!NOTE] This release was tagged but the publish job failed before assets were uploaded. v2026.4.22 ships the same fixes alongside additional changes — install that release instead. These notes are preserved here for the changelog.

Highlights

New mise untrust command revokes trust on a config file.
mise prune now respects tracked lockfiles and no longer removes tools listed in them.
GitHub asset auto-detection prefers the shortest asset name as a tiebreaker, avoiding spurious matches on longer-named variants.
New --security flag on mise registry includes security info in JSON output.

Added

(registry) --security flag on mise registry includes security info in JSON output. (#9364) by @jdx
(trust) New mise untrust command. (#9370) by @jdx

Fixed

(config) Resolved backend opts are now limited to aliases. (#9315) by @risu729
(github) Asset auto-detection prefers the shortest asset name as a tiebreaker. (#9361) by @jdx
(java) Newer Zulu versions are detected correctly — they use a different directory structure than older releases. (#9365) by @roele
(prune) mise prune now respects tracked lockfiles. (#9373) by @jdx
(task) Tool installation is skipped for missing naked tasks instead of failing the run. (#9374) by @jdx

Documentation

The docs site dismissible banner stacks its message and link on mobile. (#9362) by @jdx
Ruby compile message updated. (#9338) by @fladson

Registry

Fix flux-operator-mcp aqua path. (#9357) by @monotek
Remove openshift-install. (#9372) by @jdx
Remove go-sdk. (#9371) by @jdx

New Contributors

@fladson made their first contribution in #9338

Sponsor mise

mise is built by @jdx under en.dev — an independent studio making developer tooling (mise, aube, and more). Development is funded by sponsors. If mise saves you or your team time, please consider sponsoring at en.dev.

Full Changelog: https://github.com/jdx/mise/compare/v2026.4.20...v2026.4.21