|
From: | Nic Ferrier |
Subject: | Re: package.el + DVCS for security and convenience |
Date: | Mon, 24 Dec 2012 12:53:13 +0000 |
Ted Zlatanov <address@hidden> writes: > I propose to require signatures for ELPA packages and make package.el > aware of signatures: Requiring signatures would be VERY bad at this stage because you would break all the repositories that people get code from that do not support signing. Instead some form of tainting should be supported.
[Prev in Thread] | Current Thread | [Next in Thread] |