Félix Saparelli
Félix Saparelli
See: - https://github.com/briansmith/ring/issues/1514 - https://github.com/briansmith/ring/issues/1167 We currently use a patched ring 0.16 for release builds on Windows ARM. It seems the underlying issue will be resolved with ring 0.17, so...
Migrated from #1417 > I still have the problem after compiling from the right repo (commit af04e45b according to `cargo install`), logs below. > > **Observation:** I noticed that it...
Tracking/discussion issue for sigstore support. (Add a 👍🏻 to this issue if you'd like this to happen.)
Tracking/discussion issue for GPG signature support. (Add a 👍🏻 to this issue if you'd like this to happen.)
Tracking/discussion issue for SSH key support. (Add a 👍🏻 to this issue if you'd like this to happen.) See https://www.openssh.com/txt/release-8.1: > `ssh-keygen(1)`: add an experimental lightweight signature and > verification...
The publish step doing a verify at the tail end of the process seems a bit redundant/risky given at this point we've compiled it 15+ times to build the packages....
Overlooked that; had to do it manually earlier.
We can use https://crates.io/crates/cargo-dist-schema to parse it. Finding that file still requires us to autodiscover the tag, but if we do find it, we can have a much more efficient...
For those who want those, given we produce them during build anyway we def could package them up
Currently dwp (debuginfo packages on linux) are in the `target/deps` folder, and we fetch them from there. When https://github.com/rust-lang/cargo/pull/11384 lands we'll be able to fetch them from a stable name...