search

technomancy / leiningen

Moved to Codeberg; this is a convenience mirror
https://codeberg.org/leiningen/leiningen
Other
7.29k stars 1.6k forks source link

Implement in-process signing. #1355

Open hypirion opened 11 years ago

hypirion commented 11 years ago

Shelling out for calling GPG leads to certain complications. In particular, this method does not work at all on Windows, and generates issues when the IO has been rebound, see #1080.

If it's possible to use a Clojure wrapper around a Java cryptography library, such as BouncyCastle, then that would be preferable.

hypirion commented 11 years ago

A result of this is that we're unable to detect keychains on systems. However, it's not hard to keep the current method as an option in the project map, and fall back to internal signing when we're unable to shell out/find GPG.

technomancy commented 10 years ago

It looks like we might be able to use this: https://github.com/greglook/clj-pgp