Comments (15)
Is that a feature request or a problem report?
Personally, I think of missing checksum files as a security issue, therefore I think this is a bug.
from floorp.
https://github.com/Floorp-Projects/Floorp/releases/beta
from floorp.
Is that a feature request or a problem report?
from floorp.
I see.
I'm just asking because some people post feature requests on Issues. Sorry if I offended you.
from floorp.
I see. I'm just asking because some people post feature requests on Issues. Sorry if I offended you.
It's okay -- no offense taken :)
from floorp.
Is this mandatory for Floorp that is signing?
from floorp.
Is this mandatory for Floorp that is signing?
Okay, then how do I know nobody has tampered with your builds?
Generating checksum files (with hashes of binaries) is standard practice today.
from floorp.
As you probably know, tampering with signed software will erase the signature.
So I consider it unnecessary.
from floorp.
As you probably know, tampering with signed software will erase the signature.
So I consider it unnecessary.
But I want to install from your tar archive in the latest release page on github... It is not hard to generate a checksum file.
from floorp.
It is tedious to take action many times.
It is burdensome for me to add more work to do to release things.
If you are not comfortable with what is raised in the release, it would be better to download it from the GitHub actions artifact.
However, I will process it as a feature request. If it ends up only modifying the workflow, I'll run it.
from floorp.
It is tedious to take action many times.
It is burdensome for me to add more work to do to release things.
If you are not comfortable with what is raised in the release, it would be better to download it from the GitHub actions artifact.
However, I will process it as a feature request. If it ends up only modifying the workflow, I'll run it.
Sorry, I don't think it is tedious, and you have to do it only one time. You need to add it to the build procedure, and the file will be created automatically on each build. After that, you never need to touch it.
This is common practice. If you don't want to do that people will not be comfortable downloading the tar files without a checksum verification, and your software will not gain traction.
I for one will not install it without a checksum verification. (And that is not signing, I hope you know... anybody can tamper with the binary tar.gz)
from floorp.
I haven't seen many people who feel they don't want to download unless they can check the checksum.
If we can include it in the build process, we add it. If not, we do not.
I am a only developer and it would be burdensome to do this manually many times.
I develop as I please.
As I reseach major browsers, Most of them dont show checksum.
from floorp.
Jesus! I gave you examples of projects that do it already here on github:
https://github.com/yt-dlp/yt-dlp
https://github.com/keepassxreboot/keepassxc
https://github.com/VSCodium/vscodium
Mozilla publishes the checksums of Firefox release here: https://releases.mozilla.org/pub/firefox/releases/123.0/
See in that folder: SHA256* or SHA512* files.
from floorp.
Ok Try ut.
from floorp.
Added to Workflow
from floorp.
Related Issues (20)
- [Bug]: Overlapping addon shortcuts cannot be set from about:addons when Firefox shortcuts is disabled HOT 5
- [Bug]: buggy UI in "customize toolbar" page, when vertical tabs are enabled HOT 2
- [Bug]: YouTube HDR does not show corect colours unless in cinema mode MacOS HOT 3
- [Bug]: Website resizes slightly when hovering over collapsed vertical tabs HOT 2
- [Bug]: about:debuggingにFire foxのロゴが存在します HOT 2
- [Bug]: Moving Tab from one window to another screen moves new and old window HOT 1
- [Bug]: Slow upload speed to YouTube HOT 1
- [Bug]: Crash upon launch on Windows 7 x86 HOT 3
- [Bug]: Websites resize when using collapsible vertical tabs HOT 3
- [Bug]: Split View tabs are not resizable HOT 1
- [Bug]: Copy paste doesn't work consistently with Wayland KDE HOT 1
- [Bug]: The touchpad doesn't let me enlarging text the pages, but in firefox it works HOT 1
- [Bug]: Feature request are not very active HOT 4
- [Bug]: « open new tab button at the end of the lowest row » doesn't apply correctly HOT 10
- [Bug]: Link preview (when hovering links) disappears when unloading sidebar webpanels HOT 2
- [Bug]: No way to remove "your browser is being managed by your organisation" after accidentally importing a managed Google Account HOT 3
- [Bug]: Floorp Portable doesn't start anymore HOT 3
- New function `web-panel zoom` breaks standard hover-view of website link URLs. v11.11.2. HOT 8
- [Bug]: Window lag HOT 5
- [Bug]: Browser Manager Sidebar drops URL parameters despite URL paremeters being included HOT 3
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from floorp.