-
### Feature Request
### Description
Currently it is not possible to verify the authenticity or cryptographic integrity of the desktop app downloads from mega.io or github.com because the release…
-
New protocol to me. Users are keypair-based, protocol is relay oriented, like Nostr. [Protocol docs say messages are synched via set reconciliation](https://docs.polycentric.io/protocol/), eventual co…
-
When using `--write-verification-metadata pgp,sha512 --export-keys`, for some keys, gradle consistently fails to download them.
Gradle give this message:
```
A verification file was generated bu…
-
### Expected Behavior
If dependency verification fails due to a missing key and if gradle/verification-metadata.xml says this:
```
```
then it would be nice for Gradle's dependency-verificatio…
-
Hi, I hope you are doing well.
You might be interested that [Gradle 6.2 introduces in-core dependency verification](https://github.com/gradle/gradle/issues/10443#issuecomment-568741472)
The docu…
-
Sigstore is capable of verifying SHA256 checksums against a known release manager identity. Because pyenv is a common method of installing Python on machines, my proposal is to check Sigstore bundles …
-
This may sometimes be necessary, e.g., when facing bugs in a repository manager like Nexus (cf. [NEXUS-34538](https://issues.sonatype.org/browse/NEXUS-34538)).
Likely, [`target-platform-configurati…
-
### Failing test case
TestStandaloneUpgradeWithGPGFallback
### Error message
failed verification of agent binary
### Build
https://buildkite.com/elastic/elastic-agent-extended-testing/b…
rdner updated
1 month ago
-
The verification e-mails are currently Inline PGP, which is [problematic for a number of reasons](https://dkg.fifthhorseman.net/blog/inline-pgp-considered-harmful.html), and [difficult to parse safely…
-
I liked the feature that checked installed wallets for there validity,
What happened to that feature? Was it shelved?