On 7-5-2015 16:44, Mike Hearn wrote:
Do you actually need JAR signatures anyway? The JVM is bundled, it's not like you have to pass some system security policy beyond Gatekeeper/Windows code signing.
Well, I remember the official Sun mail.jar being signed and causing headaches if it was repacked. But the newer mail.jar is no longer signed, so maybe it is less of an issue now than back when I wrote the appjar tool (unpack a jar-of-jar to a tmp folder). Time to update my knowledge then. Tom
