Sounds great. Fork away! :-) -Tim
On Tue, Aug 6, 2019 at 4:51 AM Dmitry Avtonomov <[email protected]> wrote: > Looks like `--deep` mode needs to be made default and shallow mode renamed > to something like `--sigs-only` > > On Sun, Aug 4, 2019 at 2:27 AM Tim Boudreau <[email protected]> wrote: > > > Well, since I mentioned I'd poked at writing a Java code signature > hashing > > tool, I figured why not finish it, so, if anyone's interested, here you > > go. The readme explains what it does: > > > > https://github.com/timboudreau/signature-hash > > > > Wrote a few tests that pass (same hash with differently formatted code, > or > > code with or without a private method), and tried it on a few projects > > making changes. Jan Lahoda, you're probably one of the few people on the > > planet that could look at this and see if there's anything glaringly > wrong > > with it :-) > > > > It builds to a command-line executable JAR, but could easily be made into > > an Ant or Maven plugin or whatever. Hashing the signatures of things > that > > actually get *called* seems like it would be far superior to git hashes, > > where inconsequential changes would result in a false-incompatibility > > reading. > > > > -Tim > > > -- http://timboudreau.com
