Package signing

Anand Gaurav edited this page Sep 14, 2018 · 21 revisions

Status: Reviewed

This specification is one part of a new experience for package signing described in the blog post: NuGet Package Signing.

Package Signatures Master Spec List

Here you can find a list of the relevant specifications. Some of these require more work and details to be added, that we plan to do shortly – while some are further along. They are grouped by the three stages described in the blog post NuGet Package Signing.

The work for this feature and the discussion around the spec is tracked here: #2577 Package Signing

Stage 1. Enable package authors to sign their packages

Stage 2. Tamper proofing entire package dependency graphs

Stage 3. Configurable policies to enable locked down developer environments

Clone this wiki locally
You can’t perform that action at this time.
You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session.
Press h to open a hovercard with more details.