[Distutils] [Catalog-sig] [Python-Dev] accept the wheel PEPs 425, 426, 427
"Martin v. Löwis"
martin at v.loewis.de
Tue Nov 13 18:07:05 CET 2012
Am 13.11.12 11:26, schrieb M.-A. Lemburg:
> Note that signing such distribution files can be handled outside
> of the wheel format PEP. It just way to complex and out of scope
> for the wheel format itself. Also note that PGP/GPG and the other
> signing tools work well on any distribution file. There's really no
> need to build these into the format itself.
And even if the desire is to include the signature in the distribution
(as is common for code-signing - you want the signature in the
executable, the jar file, etc), then it's still possible to include,
say, a PGP signature inside the file, which may well be a signature
to the manuscript, preserving the rest of the signing procedure.
More information about the Distutils-SIG