[arch-general] Stronger Hashes for PKGBUILDs

Carsten Mattner carstenmattner at gmail.com
Thu May 10 11:20:08 UTC 2018

The single most beneficial change would be adoption of
The Update Framework, since it is resilient against
all known issues with remote package management,
regardless of pkg signers coming/going and whether
HTTPS is used or not. It also has a nice protocol
for handling key revocation.

More information about the arch-general mailing list