You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
32 lines
1.3 KiB
32 lines
1.3 KiB
<?xml version="1.0" encoding="UTF-8"?>
|
|
<!DOCTYPE pkgmetadata SYSTEM "https://www.gentoo.org/dtd/metadata.dtd">
|
|
<pkgmetadata>
|
|
<maintainer type="project">
|
|
<email>haskell@gentoo.org</email>
|
|
<name>Gentoo Haskell</name>
|
|
</maintainer>
|
|
<use>
|
|
<flag name="network-uri">Get Network.URI from the network-uri package.</flag>
|
|
<flag name="lukko">Use @lukko@ for file-locking, otherwise use @GHC.IO.Handle.Lock@</flag>
|
|
</use>
|
|
<longdescription>
|
|
The hackage security library provides both server and
|
|
client utilities for securing the Hackage package server
|
|
(<http://hackage.haskell.org/>). It is based on The Update
|
|
Framework (<http://theupdateframework.com/>), a set of
|
|
recommendations developed by security researchers at
|
|
various universities in the US as well as developers on the
|
|
Tor project (<https://www.torproject.org/>).
|
|
|
|
The current implementation supports only index signing,
|
|
thereby enabling untrusted mirrors. It does not yet provide
|
|
facilities for author package signing.
|
|
|
|
The library has two main entry points:
|
|
"Hackage.Security.Client" is the main entry point for
|
|
clients (the typical example being @cabal@), and
|
|
"Hackage.Security.Server" is the main entry point for
|
|
servers (the typical example being @hackage-server@).
|
|
</longdescription>
|
|
</pkgmetadata>
|