Package signing
Status: Reviewing
This specification is one part of a new experience for package signing described in the blog post: NuGet Package Signing.
Here you can find a list of the relevant specifications. Some of these require more work and details to be added, that we plan to do shortly – while some are further along. They are grouped by the three stages described in the blog post NuGet Package Signing.
The work for this feature and the discussion around the spec is tracked here: #2577 Package Signing
-
Author Package Signing: Describes the user experience for producing and consuming signed packages.
-
NuGet.exe Sign Command: Describes the CLI commands in NuGet.exe to sign packages
-
Package Signatures Technical Details: Contains the signature format technical details
- NuGet Server Checksums [TBD]
- NuGet client security policy. [TBD]
- NuGet server security policy. [TBD]
Check out the proposals in the accepted
& proposed
folders on the repository, and active PRs for proposals being discussed today.