The hackage-security package

[Tags:bsd3, library, test]

The hackage security library provides both server and client utilities for securing the Hackage package server (http://hackage.haskell.org/). It is based on The Update Framework (http://theupdateframework.com/), a set of recommendations developed by security researchers at various universities in the US as well as developers on the Tor project (https://www.torproject.org/).

The current implementation supports only index signing, thereby enabling untrusted mirrors. It does not yet provide facilities for author package signing.

The library has two main entry points: Hackage.Security.Client is the main entry point for clients (the typical example being cabal), and Hackage.Security.Server is the main entry point for servers (the typical example being hackage-server).

Properties

Versions 0.1.0.0, 0.2.0.0, 0.3.0.0, 0.5.0.0, 0.5.0.1, 0.5.0.2, 0.5.1.0, 0.5.2.0, 0.5.2.1, 0.5.2.2
Change log ChangeLog.md
Dependencies base (>=4.5 && <5), base16-bytestring (>=0.1.1 && <0.2), base64-bytestring (==1.0.*), bytestring (>=0.9 && <0.11), Cabal (>=1.14 && <2.2), containers (>=0.4 && <0.6), cryptohash-sha256 (==0.11.*), directory (>=1.1.0.2 && <1.4), ed25519 (==0.0.*), filepath (>=1.2 && <1.5), ghc-prim, mtl (==2.2.*), network (>=2.5 && <2.7), network-uri (==2.6.*), old-locale (>=1.0), old-time (>=1 && <1.2), parsec (==3.1.*), pretty (>=1.0 && <1.2), tar (==0.5.*), template-haskell, time (>=1.2 && <1.7), transformers (>=0.4 && <0.6), zlib (>=0.5 && <0.7) [details]
License BSD3
Copyright Copyright 2015-2016 Well-Typed LLP
Author Edsko de Vries
Maintainer edsko@well-typed.com
Stability Unknown
Category Distribution
Home page https://github.com/well-typed/hackage-security
Bug tracker https://github.com/well-typed/hackage-security/issues
Source repository head: git clone https://github.com/well-typed/hackage-security.git
Uploaded Sun Aug 28 23:06:36 UTC 2016 by DuncanCoutts
Updated Fri Feb 17 11:04:15 UTC 2017 by EdskoDeVries to revision 2
Distributions Arch:0.5.2.2, LTSHaskell:0.5.2.2, NixOS:0.5.2.2, Stackage:0.5.2.2, Tumbleweed:0.5.2.2
Downloads 883 total (116 in the last 30 days)
Votes
0 []
Status Docs available [build log]
Last success reported on 2016-08-28 [all 1 reports]

Modules

[Index]

Flags

NameDescriptionDefaultType
base48Are we using base 4.8 or later?EnabledAutomatic
use-network-uriAre we using network-uri?EnabledAutomatic
old-directoryUse directory < 1.2 and old-timeDisabledAutomatic

Use -f <flag> to enable a flag, or -f -<flag> to disable that flag. More info

Downloads

Maintainer's Corner

For package maintainers and hackage trustees