search

rpm-software-management / librepo

A library providing C and Python (libcURL like) API for downloading packages and linux repository metadata in rpm-md format
http://rpm-software-management.github.io/librepo/
GNU Lesser General Public License v2.1
75 stars 91 forks source link

Signed metalink files #210

Open DemiMarie opened 3 years ago

DemiMarie commented 3 years ago

To mitigate potential vulnerabilities in libmetalink, it is highly desirable to for metalink files to be signed. That is not possible for Fedora, but it might be possible for other distributions.

lukash commented 3 years ago

You should probably provide more details in your issue descriptions.

DemiMarie commented 3 years ago

Sorry about that, fixed.