|
||||||||
|
This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators. For more information on JIRA, see: http://www.atlassian.com/software/jira |
||||||||
You received this message because you are subscribed to the Google Groups "Jenkins Issues" group.
To unsubscribe from this group and stop receiving emails from it, send an email to jenkinsci-issues+unsubscr...@googlegroups.com.
For more options, visit https://groups.google.com/groups/opt_out.
OSUOSL is not the only mirror, so an integrity check that relies on HTTPS would be tricky.
I think an easier thing to do is to provide cryptographic checksums in update center metadata, which is already digitally signed. This is how debian packages and RPM files are signed, too.