Signed binaries support

werf / multiwerf

Version manager and updater for werf project

Apache License 2.0

30 stars 4 forks source link

Open distorhead opened 4 years ago

distorhead commented 4 years ago

Check SHA256SUMS when downloading a new werf release.
Check SHA256SUMS when downloading a new multiwerf release.
Public sign keys should be embedded into multiwerf binary itself.
Change multiwerf and werf docs: add info that multiwerf is the only secure way to install werf.

distorhead commented 4 years ago