Please sign a sums file, or checksums.

[envygeeks]

Please offer a way for us to validate that the download is not compromised, with a GPG key you publish somewhere we can get it, that's also hosted on a keyserver. I feel that blindly downloading a binary wthout any checksum, is cause for disaster. And people would say, well it's over SSL, but SSL doesn't prevent somebody from hosting a compromised binary.

[craig-davis]

Hi @chrishulton Has their been any progress on this?