-
Notifications
You must be signed in to change notification settings - Fork 905
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Require switch on unofficial build #36
Comments
ferventcoder
added a commit
that referenced
this issue
Jan 25, 2015
ferventcoder
added a commit
that referenced
this issue
Jan 25, 2015
ferventcoder
added a commit
that referenced
this issue
Jan 25, 2015
Add official publickeytoken to application parameters. Adjust .uppercut to search for an environment variable containing the official key location
ferventcoder
added a commit
that referenced
this issue
Jan 25, 2015
When choco.exe detects that it is not using the official publickeytoken, throw an error requiring an explicit override (this is already overridden in debug builds). When AllowUnofficialBuild flag is set to true, log a very important warning so that folks can receive clues that the state of their system may be compromised.
Very cool! 👍 |
ferventcoder
changed the title
Check for proper public key
Require switch on unofficial build
Jan 30, 2015
👍 👍 Yay for security and yay for being able to build without the "official" key for testing purposes (without having to do a bunch of modifications that make pull requests suck). |
most of that brought to you by this - 59ba8f6 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
The default one in the repository is for building source. If built in release mode, require a special switch to run
--allow-unofficial-build
or something like that.When choco.exe detects that it is not using the official
publickeytoken, throw an error requiring an explicit override (this is
already overridden in debug builds). When AllowUnofficialBuild (
--allow-unofficial-build
) flag isset to true, log a very important warning so that folks can receive
clues that the state of their system may be compromised.
The text was updated successfully, but these errors were encountered: