[Rpm-maint] [rpm-software-management/rpm] RFE: read sources checksums from the SPEC file and verify them (#463)

Jeff Johnson notifications at github.com
Sat Jul 14 16:15:37 UTC 2018


So copr has a facility that does not use SRPMs: you might consider changing the facility since SRPMs already provide digests (and package signature) including verification, exactly what you are requesting as an alternative duplicate implementation using tags in spec files.

See also issue #446 about probe dependencies, of which digest([algo:]/path) = hex is an example.

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/rpm-software-management/rpm/issues/463#issuecomment-405033445
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.rpm.org/pipermail/rpm-maint/attachments/20180714/8fc680c4/attachment.html>


More information about the Rpm-maint mailing list