AppImageKit icon indicating copy to clipboard operation
AppImageKit copied to clipboard

Published 20 hours ago verified publisher icon AppImage

Release should be signed

Open s09bQ5 opened this issue 5 years ago • 4 comments

Since you are asking people to use your binary releases, you should sign the appimagetool AppImages and provide detached signatures for the AppRun and runtime binaries.

s09bQ5 avatar Jul 05 '20 15:07 s09bQ5

Good idea.

probonopd avatar Jul 07 '20 17:07 probonopd

@s09bQ5 Why is the signatures for AppRun is required? and also the runtime binaries if the entire AppImage signature is given?

antony-jr avatar Sep 24 '20 21:09 antony-jr

I think so that people who embed the runtime and AppRun into their own binaries can check their authenticity.

probonopd avatar Sep 26 '20 17:09 probonopd

Ah... I see. Thanks for the clarification.

antony-jr avatar Sep 26 '20 17:09 antony-jr