Joachim Strömbergson <Joachim at Strombergson.com> writes: > http://docs.python.org/library/hashlib.html > I would suggest to use the SHA-256 in the library. I agree with this. We should even move towards supporting x509 and/or gpg signatures in eggs, similar to signed .jar files.