HeadsetControl icon indicating copy to clipboard operation
HeadsetControl copied to clipboard
verified publisher icon Sapd

Provide signed sources for releases

Open PolarianDev opened this issue 2 years ago • 1 comments

Description

Hello,

For future releases, could you provide signed sources for authenticity, Github can republish sources at any time, it allows packagers to ensure the tarball they downloaded was what the developer released, and has not been modified.

Should be as simple as uploading a detached signature of the tarball Github makes.

Thank you, Polarian

PolarianDev avatar Dec 26 '23 14:12 PolarianDev

Thank you for the suggestion, I think thats a good point and will do so in future releases. Will also sign future commits.

Sapd avatar Feb 10 '24 15:02 Sapd

Latest release includes signed sources

Sapd avatar Apr 01 '24 14:04 Sapd