Karna@lemmy.ml to Linux@lemmy.ml · 9 months agoOh Snap! Canonical now doing manual reviews for new packages due to scam appswww.gamingonlinux.comexternal-linkmessage-square23fedilinkarrow-up10arrow-down10
arrow-up10arrow-down1external-linkOh Snap! Canonical now doing manual reviews for new packages due to scam appswww.gamingonlinux.comKarna@lemmy.ml to Linux@lemmy.ml · 9 months agomessage-square23fedilink
minus-squarePantherina@feddit.delinkfedilinkarrow-up0·9 months agoNo. They will likely still use release tarballs
minus-squarevanderbilt@lemmy.worldlinkfedilinkEnglisharrow-up0·9 months agoAnd MD5 for package integrity checking, and not using per-package PKI signatures.
minus-squarePantherina@feddit.delinkfedilinkarrow-up0·edit-29 months agoCough Fedora does that (using rpm-sequoia written in Rust) and also uses zst instead of xz for RPMs since Fedora 31
No. They will likely still use release tarballs
And MD5 for package integrity checking, and not using per-package PKI signatures.
Cough Fedora does that (using rpm-sequoia written in Rust) and also uses zst instead of xz for RPMs since Fedora 31