[Distutils] [Catalog-sig] [Python-Dev] accept the wheel PEPs 425, 426, 427

"Martin v. Löwis" martin at v.loewis.de
Tue Nov 13 18:07:05 CET 2012

Am 13.11.12 11:26, schrieb M.-A. Lemburg:
> Note that signing such distribution files can be handled outside
> of the wheel format PEP. It just way to complex and out of scope
> for the wheel format itself. Also note that PGP/GPG and the other
> signing tools work well on any distribution file. There's really no
> need to build these into the format itself.

And even if the desire is to include the signature in the distribution
(as is common for code-signing - you want the signature in the 
executable, the jar file, etc), then it's still possible to include,
say, a PGP signature inside the file, which may well be a signature
to the manuscript, preserving the rest of the signing procedure.


More information about the Distutils-SIG mailing list