[Distutils] Removing wheel signing features from the wheel library
Wes Turner
wes.turner at gmail.com
Thu Mar 22 13:57:26 EDT 2018
What maintenance is required?
Here's a link to the previous discussion of this issue:
"Remove or deprecate wheel-signing features"
https://github.com/pypa/wheel/issues/196
What has changed? There is still no method for specifying a keyring;
whereas with GPG, all keys in the ring are trusted.
On Thursday, March 22, 2018, Nick Coghlan <ncoghlan at gmail.com> wrote:
> On 22 March 2018 at 22:35, <alex.gronholm at nextday.fi> wrote:
>
>> I am not changing the format of RECORD, I'm simply removing the
>> cryptographic signing and verifying functionality, just the way you
>> described. Hash checking will stay. As we agreed earlier, those
>> features could be deprecated or removed from the PEP entirely.
>>
>
> Cool, that's what I thought you meant, but I figured I should double check
> since our discussion was a while ago now :)
>
> Cheers,
> Nick.
>
> --
> Nick Coghlan | ncoghlan at gmail.com | Brisbane, Australia
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.python.org/pipermail/distutils-sig/attachments/20180322/20a4913b/attachment.html>
More information about the Distutils-SIG
mailing list