Skip to content
This repository has been archived by the owner on Dec 16, 2021. It is now read-only.
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: NixOS/docker
base: 3a8d3774bec1
Choose a base ref
...
head repository: NixOS/docker
compare: 003412658ea4
Choose a head ref
  • 1 commit
  • 1 file changed
  • 1 contributor

Commits on Oct 4, 2019

  1. Drop the sha256sum verification. 

    Checking the sha256 fingerprint of the downloaded archive doesn't
accomplish anything for 2 reasons:

 (1) We download via HTTPS, so the archive is authenticated already.

 (2) This entire build runs on untrusted hardware, so verifying the
     input doesn't add any "security" anyway. Nobody knows what
     hub.docker.com does exactly while building that image.
    @peti
    peti committed Oct 4, 2019
    Configuration menu
    Copy the full SHA
    0034126 View commit details
    Browse the repository at this point in the history