v0.11.0 — TRUSCA (renamed) + read-only demo

The first post-GA feature release. The full machine-readable changelog lives in CHANGELOG.md; this page is the human-readable summary.

Highlights

Renamed — TrustedOSS Portal is now TRUSCA

The product is now TRUSCA — the SCA tool of the TrustedOSS initiative. The GitHub repository, container images, and documentation path moved to the new name:

Images: ghcr.io/trustedoss/trusca-backend, trusca-backend-worker, trusca-frontend (the trusca- prefix starts at this release).
Docs: https://trustedoss.github.io/trusca/.
Internal identifiers (DB roles, Celery task names, server paths) intentionally keep their previous names — no migration is required to upgrade.

Public read-only demo

A self-contained, read-only demo can be deployed to a single Hetzner server, with seeded projects, scans, and findings so evaluators can explore the UI without writing data. Read-only mode is surfaced in the UI and enforced server side.

UI craft pass + hardening

A typography / motion / empty-state polish pass (W11–W12) and a hardening sweep from an external verification campaign landed in this release.

Upgrade notes

Container images are published under the new trusca-* names. The production docker-compose.yml and Helm chart already reference them; pin IMAGE_TAG to the release you are running.
Releases <= 0.10.0 remain under the old image names and are unaffected.

Highlights​

Renamed — TrustedOSS Portal is now TRUSCA​

Public read-only demo​

UI craft pass + hardening​

Upgrade notes​

Highlights

Renamed — TrustedOSS Portal is now TRUSCA

Public read-only demo

UI craft pass + hardening

Upgrade notes