This repository was archived by the owner on Sep 17, 2023. It is now read-only.
This repository was archived by the owner on Sep 17, 2023. It is now read-only.
Npm post-install hook should verify binary against a checksum #102
Closed
Description
During the semantic-release process, we should checksum each binary and embed this in the npm package that functions as a post-install hook. The binary downloaded from the GitHub release can be verified at download time against the checksum calculated inside GitHub actions
Also can publish the checksums in the GitHub release