On 10/1/21 1:59 PM, Brian Cain wrote:
If there's any trust concerns we can verify the download in the dockerfile using the hash file for the tarball and/or the gpg signature.
That's true, I should have thought of that. r~
- hexagon container update Brian Cain
- Re: hexagon container update Richard Henderson
- RE: hexagon container update Brian Cain
- Re: hexagon container update Alex Bennée
- RE: hexagon container update Brian Cain
- Re: hexagon container update Richard Henderson
