You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Additional context
Any signature would work. The advantage of DKIM-Signature is that 1) it is already there 2) there is email client support to verify DKIM-Signature
The text was updated successfully, but these errors were encountered:
Making sure I understand: are you asking for a DKIM signature for the per-project "security history" page on pypi.org itself, or are you asking about the DKIM signature on the security emails themselves?
(If it's the latter, I think PyPI already issued DKIM-signed message bodies, since all of the emails in my inbox have the DKIM-Signature header. If it's the former, I think the value of signatures in the "security history" log would be minimal, since PyPI itself has transport security. But I could be misunderstanding.)
What's the problem this feature will solve?
Verifying the event trail in security history
Describe the solution you'd like
Add a field
signature
to the eventAdditional context
Any signature would work. The advantage of
DKIM-Signature
is that 1) it is already there 2) there is email client support to verify DKIM-SignatureThe text was updated successfully, but these errors were encountered: