Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Reproducible build (tracking issue) #335

Open
3 tasks
Davidson-Souza opened this issue Jan 7, 2025 · 0 comments
Open
3 tasks

Reproducible build (tracking issue) #335

Davidson-Souza opened this issue Jan 7, 2025 · 0 comments
Labels
code quality Generally improves code readability and maintainability dependencies Pull requests that update a dependency file documentation Improvements or additions to documentation enhancement New feature or request

Comments

@Davidson-Souza
Copy link
Collaborator

Reproducible builds are a very useful security primitive, as they reduce the risk of supply chain attack and single point of failure on binary redistribution.

This issue tacks the progress towards making floresta builds deterministic. This should allow the community to verify our binaries. It should be updated as the project goes to reflect our current plans and tasks.

  • Automate the nix-based build
  • Figure out how to cross build for Windows
  • Create a repo for attestation, like bitcoin core's
@jaoleal jaoleal mentioned this issue Jan 7, 2025
Merged
@Davidson-Souza Davidson-Souza added documentation Improvements or additions to documentation enhancement New feature or request dependencies Pull requests that update a dependency file code quality Generally improves code readability and maintainability labels Jan 8, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
code quality Generally improves code readability and maintainability dependencies Pull requests that update a dependency file documentation Improvements or additions to documentation enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@Davidson-Souza