dangerzone

mirror of https://github.com/freedomofpress/dangerzone.git synced 2025-04-28 18:02:38 +02:00

History

deeplow 250d8356cd Hash-verify container pip install & merge build-image Ensure that when the container image is installing pymupdf (unavailable in the repos) with verified hashes. To do so, it has the pymupdf dependency declared in a "container" group in `pyproject.toml`, which then gets exported into a requirements.txt, which is then used for hash-verification when building the container. Because this required modifying the container image build scripts, they were all merged to avoid duplicate code. This was an overdue change anyways.	2024-01-03 12:58:35 +00:00
..
workflows	Hash-verify container pip install & merge build-image	2024-01-03 12:58:35 +00:00

Hash-verify container pip install & merge build-image

Ensure that when the container image is installing pymupdf (unavailable
in the repos) with verified hashes. To do so, it has the pymupdf
dependency declared in a "container" group in `pyproject.toml`, which
then gets exported into a requirements.txt, which is then used for
hash-verification when building the container.

Because this required modifying the container image build scripts, they
were all merged to avoid duplicate code. This was an overdue change
anyways.

2024-01-03 12:58:35 +00:00

workflows

Hash-verify container pip install & merge build-image

2024-01-03 12:58:35 +00:00