You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
If these hash files were uploaded to the repo when a public release is created, they could be used for direct comparison against local/operator built images. This would make public validation of Google's provided hashes a bit easier compared to the current method of scraping the release notes.
The text was updated successfully, but these errors were encountered:
It looks like the ./production/packaging/build_and_test_all_in_docker script creates artifacts in the
dist/gcp
directory that includes*.sha256
files for the binary hashes of a particular build.If these hash files were uploaded to the repo when a public release is created, they could be used for direct comparison against local/operator built images. This would make public validation of Google's provided hashes a bit easier compared to the current method of scraping the release notes.
The text was updated successfully, but these errors were encountered: