Matteo "triex" Suppo

Hello, I'm working on a arduino-create-agent 2.0. Something like that could be very interesting indeed. I will consider it.

Yes, only the commandline. The key should be crypto.SHA256.

The only thing that comes to mind it that maybe the quotes are being escaped. You could try with the following go code: ```go import ( "crypto/rand" "crypto/rsa" "crypto/sha256" "crypto/x509"...

The certificates generated with --generateCert are only used for ssl, they are not used to sign the commandline

It shouldn't be possible to verify a signature with a ecdsa key, since it expects an rsa public key

The commands are usually built by the builder-api. The agent could use that (but it would diminish the reusability of the project)

Problem is, you would require a new arduino-create-agent version each time the commands change.

@cmaglie

Is this going to be addressed, by any chance?