Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add checksum to lock file #43

Closed
jmnas opened this issue Jan 28, 2015 · 3 comments
Closed

Add checksum to lock file #43

jmnas opened this issue Jan 28, 2015 · 3 comments
Labels
wontfix

Comments

@jmnas
Copy link

jmnas commented Jan 28, 2015

I'm wondering if it is possible to (optionally) add the sha1 of each dependency to the lock file and verify it when the dependencies are resolved? This would be useful for the paranoid and for people that have dependencies that are known to be updated in place from time to time.
@rspieldenner
Copy link
Contributor

I haven't seen the need for this at my employer so I won't be implementing it. However I'm more than happy to accept a contribution.

@jmnas
Copy link
Author

jmnas commented Jan 29, 2015

Ok I'll look into it. If you have any thoughts on how to do this let me know.

@bmuschko
Copy link
Contributor

bmuschko commented Jun 9, 2015

@jmnas If you need this, you could easily build a plugin that use the functionality of gradle-dependency-lock-plugin and additionally writes checksum files. I am going to close this issue for now. So far nobody else needed this functionality and we don't necessarily want to support edge cases.

@bmuschko bmuschko closed this as completed Jun 9, 2015
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
wontfix
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@bmuschko @rspieldenner @jmnas