-
Notifications
You must be signed in to change notification settings - Fork 955
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Support package upload with a SHA-256 checksum #681
Comments
This was referenced Aug 4, 2021
This was referenced Sep 1, 2021
This was referenced Nov 27, 2023
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Currently package upload respects
md5_digest
as a form parameter and validates the digest.Discussion took place earlier this year (or last year) about migrating to using SHA-256 as the digest algorithm instead. We should begin to validate that and support it so tools (e.g., twine) can start uploading packages using this digest algorithm.
The text was updated successfully, but these errors were encountered: