On December 2, 2021 3:44 AM, Edward Welbourne > > My first counter-argument comes from the "$(shell git hash-object obj)" > > suggestion which begs the question: if git, which relies heavily upon > > SHA-1, is available, doesn't that mean SHA-1 is also natively > > available? I'm not aware of git being restricted in any jurisdictions. > > Seems unlikely, given that it's considered insecure. > FIPS doesn't allow use of it.
Again, as I previously responded, using git was an example, not a required solution. You can use openssl, openssh, gpg, to do the same thing. As of a few of versions ago, git can use SHA256 instead of SHA1.
