assets section of each release doesnt include .sha256 file

dependency-check / dependency-check-sonar-plugin

Integrates Dependency-Check reports into SonarQube

585 stars 133 forks source link

assets section of each release doesnt include .sha256 file #876

Open erickramer51115 opened 10 months ago

erickramer51115 commented 10 months ago

Can the assets section of the release pages for dependency-check-sonar-plugin get a .sha256 file or other checksum file so that the jar, source zip, and source tarball can be verified, please?

Reamer commented 9 months ago

Good suggestion. Let's see how this can be implemented.