Support installing from untrusted HTTP URLs

babashka / bbin

Install any Babashka script or project with one command

MIT License

139 stars 9 forks source link

Support installing from untrusted HTTP URLs #4

Closed rads closed 2 years ago

rads commented 2 years ago

From the Design Docs:

We can install dependencies from untrusted sources, but only with an explicit SHA.

For a Git repo, it's a commit SHA.

For a file, it's a SHA256 hash of the file contents.