Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feature: Signed Releases #2400

Open
sambacha opened this issue Jul 20, 2022 · 0 comments
Open

Feature: Signed Releases #2400

sambacha opened this issue Jul 20, 2022 · 0 comments
Labels
A-releases Area: releases/packaging P-high Priority: high T-feature Type: feature
Milestone
v1.0.0

Comments

@sambacha
Copy link
Contributor

Component

Forge, Cast, Anvil, Foundryup, Other (please describe)

Describe the feature you would like

Signed releases by core contributors

GPG Signed git tag
SHA256SUM of binaries

Additional context

Foundry is being used to compile code that handles money, it is and will increasingly become a target for malicious actors. Right now there is no assurance that nightly releases have any sort of verifiable component to them.

part of #2396
@sambacha sambacha added the T-feature Type: feature label Jul 20, 2022
@gakonst gakonst added this to Foundry Jul 20, 2022
@gakonst gakonst moved this to Todo in Foundry Jul 20, 2022
@onbjerg onbjerg added A-releases Area: releases/packaging and removed T-feature Type: feature labels Aug 11, 2022
@zerosnacks zerosnacks added this to the v1.0.0 milestone Jul 26, 2024
This was referenced Jul 31, 2024
Closed
Open
@grandizzy grandizzy added P-high Priority: high T-feature Type: feature labels Nov 21, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
A-releases Area: releases/packaging P-high Priority: high T-feature Type: feature
Projects
Foundry
Archived in project
Milestone
v1.0.0
Development

No branches or pull requests
4 participants
@onbjerg @sambacha @grandizzy @zerosnacks