AaronFiore/electrum
1
0
Fork 0
Code Activity
Files
d348da811aef692a15754b00b9980d17daf9dbd3
electrum/contrib/deterministic-build
History
SomberNight 40842fad39 requirements: bump electrum-ecc and electrum-aionostr 
note: these sdists are now reproducibly built.
Ideally the person updating the pinned hash should be different from the one who uploaded the dep to PyPI and reproduce and verify the hash. This prevents hiding a backdoor in just the sdist uploaded to PyPI.

but people can try to reproduce the PyPI sdists at any time and ring alarm bells if they can't
2025-02-04 17:00:21 +00:00
..
electrum-locale @ 39132e7722
update locale
2024-05-29 14:56:04 +00:00
check_submodules.sh
contrib: reformat most shell scripts
2022-09-27 14:55:22 +00:00
find_restricted_dependencies.py
contrib: fix find_restricted_dependencies for deps with version range
2021-04-26 20:45:40 +02:00
README.md
android build: add Qt/QML build-time dependencies
2022-03-14 21:36:27 +01:00
requirements-binaries-mac.txt
qt desktop gui: upgrade qt5->qt6
2024-09-18 15:48:38 +00:00
requirements-binaries.txt
qt desktop gui: upgrade qt5->qt6
2024-09-18 15:48:38 +00:00
requirements-build-android.txt
build: partial rerun freeze_packages
2024-02-21 16:45:00 +00:00
requirements-build-appimage.txt
build: partial rerun freeze_packages
2024-02-21 16:45:00 +00:00
requirements-build-base.txt
build: partial rerun freeze_packages
2024-02-21 16:45:00 +00:00
requirements-build-mac.txt
build: partial rerun freeze_packages
2024-02-21 16:45:00 +00:00
requirements-build-wine.txt
build: partial rerun freeze_packages
2024-02-21 16:45:00 +00:00
requirements-hw.txt
hw plugins: ledger: bump pinned lib to 0.3.0, raise max_lib to <0.4
2024-10-11 15:13:34 +00:00
requirements.txt
requirements: bump electrum-ecc and electrum-aionostr
2025-02-04 17:00:21 +00:00

README.md

Notes

The frozen dependency lists in this folder are generated files.

  • Starting from contrib/requirements/requirements*.txt,
  • we use the contrib/freeze_packages.sh script,
  • to generate contrib/deterministic-build/requirements*.txt.

The source files list direct dependencies with loose version requirements, while the output files list all transitive dependencies with exact version+hash pins.

The build scripts only use these hash pinned requirement files.

View Git Blame Copy Permalink