setup-python icon indicating copy to clipboard operation
setup-python copied to clipboard
verified publisher icon actions

Verify checksum of downloaded version archive

Open firewave opened this issue 1 year ago • 1 comments

Description: After the download of the version archive it should verify the checksum of the file against the provided hashes.sha256 for the release in question.

Justification: This ensures that the downloaded file is the actually intended one.

Are you willing to submit a PR?

firewave avatar Jun 10 '24 13:06 firewave

Hello @firewave, Thank you for creating this issue and we will get back to you once we have some feedback on this :)

aparnajyothi-y avatar Jun 11 '24 14:06 aparnajyothi-y