summaryrefslogtreecommitdiff
path: root/SECURITY.md
diff options
context:
space:
mode:
authorHarmen Stoppels <harmenstoppels@gmail.com>2023-08-29 16:33:03 +0200
committerGitHub <noreply@github.com>2023-08-29 16:33:03 +0200
commiteef9939c21c65f4b1da64807b1e2f120e0e8afbf (patch)
treeb0bdf249c28beb2f7107603a97f012310698bda5 /SECURITY.md
parentffddaabaa096f6514d2f3646fc99b39e13e06850 (diff)
downloadspack-eef9939c21c65f4b1da64807b1e2f120e0e8afbf.tar.gz
spack-eef9939c21c65f4b1da64807b1e2f120e0e8afbf.tar.bz2
spack-eef9939c21c65f4b1da64807b1e2f120e0e8afbf.tar.xz
spack-eef9939c21c65f4b1da64807b1e2f120e0e8afbf.zip
Automated git version fixes (#39637)
Use full length commit sha instead of short prefixes, to improve reproducibility (future clashes) and guard against compromised repos and man in the middle attacks. Abbreviated commit shas are expanded to full length, to guard against future clashes on short hash. It also guards against compromised repos and man in the middle attacks, where attackers can easily fabricate a malicious commit with a shasum prefix collision. Versions with just tags now also get a commit sha, which can later be used to check for retagged commits.
Diffstat (limited to 'SECURITY.md')
0 files changed, 0 insertions, 0 deletions