Signed versions (1 post)

  1. koneu
    Posted 5 years ago #

    Is there any plan to offer cryptographic signatures of the distributed versions? Ideally, a PGP-signed file containing the hashes for either the unique files, but otherwise just a hash for the entire distribution would be a great way to know that WordPress is indeed pristine. This would also simplify validating that the version we update with is in fact what it claims to be – a genuine update.

    Thank you!

Topic Closed

This topic has been closed to new replies.

About this Topic