Closed devurandom closed 1 year ago
We ask that commits include a developer certificate of origin (DCO), which means a Signed-off-by line indicating someone who asserts that the code in the commit is acceptable for the open source license. That can be added to an existing PR by using:
git commit --amend --signoff
git push -f
(interesting... I've never resolved a merge conflict through the GitHub UI before. I'll squash all this down on final merge)
I had missed that it fetches the sha256 from pkgs.tailscale.com if not specified explicitly, that was my last objection. We can get this in, tag v2, and publish the Changelog.
Verify the binary downloaded before unpacking or executing it, to enhance security. Opt-in by providing the
sha256sum
argument.Signed-off-by: Dennis Schridde dennis@metabase.com