I was wondering whether it would be possible for checksums to be provided with Shush releases so that we're able to verify the contents before using the binary.
Our security team gave us a recommendation that we should verify the contents of binaries prior to making them widely available within our organisation.
Thank you so much for Shush, we use it everyday and we love it ❤️
Hi there,
I was wondering whether it would be possible for checksums to be provided with Shush releases so that we're able to verify the contents before using the binary.
Kind of similar to this project: https://github.com/weaveworks/eksctl/releases
Our security team gave us a recommendation that we should verify the contents of binaries prior to making them widely available within our organisation.
Thank you so much for Shush, we use it everyday and we love it ❤️