What maintenance is required? Here's a link to the previous discussion of this issue:
"Remove or deprecate wheel-signing features" https://github.com/pypa/wheel/issues/196 What has changed? There is still no method for specifying a keyring; whereas with GPG, all keys in the ring are trusted. On Thursday, March 22, 2018, Nick Coghlan <[email protected]> wrote: > On 22 March 2018 at 22:35, <[email protected]> wrote: > >> I am not changing the format of RECORD, I'm simply removing the >> cryptographic signing and verifying functionality, just the way you >> described. Hash checking will stay. As we agreed earlier, those >> features could be deprecated or removed from the PEP entirely. >> > > Cool, that's what I thought you meant, but I figured I should double check > since our discussion was a while ago now :) > > Cheers, > Nick. > > -- > Nick Coghlan | [email protected] | Brisbane, Australia >
_______________________________________________ Distutils-SIG maillist - [email protected] https://mail.python.org/mailman/listinfo/distutils-sig
