hackage-security: Hackage security library
The hackage security library provides both server and client utilities for securing the Hackage package server (http://hackage.haskell.org/). It is based on The Update Framework (http://theupdateframework.com/), a set of recommendations developed by security researchers at various universities in the US as well as developers on the Tor project (https://www.torproject.org/).
The current implementation supports only index signing, thereby enabling untrusted mirrors. It does not yet provide facilities for author package signing.
The library has two main entry points:
Hackage.Security.Client is the main entry point for
clients (the typical example being cabal
), and
Hackage.Security.Server is the main entry point for
servers (the typical example being hackage-server
).
This is a beta release.
Modules
[Index]
- Hackage
- Text
Flags
Automatic Flags
Name | Description | Default |
---|---|---|
base48 | Are we using base 4.8 or later? | Enabled |
use-network-uri | Are we using network-uri? | Enabled |
old-directory | Use directory < 1.2 and old-time | Disabled |
Use -f <flag> to enable a flag, or -f -<flag> to disable that flag. More info
Downloads
- hackage-security-0.5.1.0.tar.gz [browse] (Cabal source package)
- Package description (as included in the package)
Maintainer's Corner
For package maintainers and hackage trustees
Candidates
Versions [RSS] | 0.1.0.0, 0.2.0.0, 0.3.0.0, 0.5.0.0, 0.5.0.1, 0.5.0.2, 0.5.1.0, 0.5.2.0, 0.5.2.1, 0.5.2.2, 0.5.3.0, 0.6.0.0, 0.6.0.1, 0.6.1.0, 0.6.2.0, 0.6.2.1, 0.6.2.2, 0.6.2.3, 0.6.2.4, 0.6.2.5, 0.6.2.6 |
---|---|
Change log | ChangeLog.md |
Dependencies | base (>=4.5 && <5), base16-bytestring (>=0.1.1 && <0.2), base64-bytestring (>=1.0 && <1.1), bytestring (>=0.9 && <0.11), Cabal (>=1.14 && <1.26), containers (>=0.4 && <0.6), cryptohash-sha256 (>=0.11 && <0.12), directory (>=1.1.0.2 && <1.3), ed25519 (>=0.0 && <0.1), filepath (>=1.2 && <1.5), ghc-prim, mtl (>=2.2 && <2.3), network (>=2.5 && <2.7), network-uri (>=2.6 && <2.7), old-locale (>=1.0), old-time (>=1 && <1.2), parsec (>=3.1 && <3.2), pretty (>=1.0 && <1.2), tar (>=0.5 && <0.6), template-haskell, time (>=1.2 && <1.7), transformers (>=0.4 && <0.6), zlib (>=0.5 && <0.7) [details] |
License | BSD-3-Clause |
Copyright | Copyright 2015 Well-Typed LLP |
Author | Edsko de Vries |
Maintainer | edsko@well-typed.com |
Category | Distribution |
Home page | https://github.com/well-typed/hackage-security |
Bug tracker | https://github.com/well-typed/hackage-security/issues |
Source repo | head: git clone https://github.com/well-typed/hackage-security.git |
Uploaded | by DuncanCoutts at 2016-04-23T10:04:45Z |
Distributions | Arch:0.6.2.5, Debian:0.6.0.1, Fedora:0.6.2.3, LTSHaskell:0.6.2.4, NixOS:0.6.2.4, Stackage:0.6.2.6, openSUSE:0.6.2.4 |
Reverse Dependencies | 6 direct, 6 indirect [details] |
Downloads | 61598 total (268 in the last 30 days) |
Rating | (no votes yet) [estimated by Bayesian average] |
Your Rating | |
Status | Docs uploaded by user [build log] Last success reported on 2016-04-23 [all 1 reports] |