public
/
sourceid
5
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
sourceid/README.md

438 B
Raw Permalink Blame History

SourceID

SourceId ensures that source code integrity is verifiable. It prevents tampering of archives and other formats used for delivering source code by standardizing code and generating a hash-based fingerprint of the tree which includes all essential files.

Mitigated Risks

  • Malicious code can be introduced during creation of archival formats such as tar-balls
  • Pre-compiled binaries and code can obfuscate malicious code