minisign
signify
minisign | signify | |
---|---|---|
12 | 3 | |
1,967 | 259 | |
- | - | |
4.8 | 5.1 | |
about 1 month ago | about 2 months ago | |
C | C | |
GNU General Public License v3.0 or later | ISC License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
minisign
- Ask HN: What are your favorite tiny, single purpose tools?
- Minisign A dead simple tool to sign files and verify signatures
-
PGP signatures on PyPI: worse than useless
There are alternatives, minisign and signify.
-
Can a program be the only thing able to have access to a private key?
You don't have to attach identities to public and private keys. If all you need it for is signing, then check out minisign.
-
How should I encrypt files for sharing over the internet?
If you need signatures, minisign is a similar hard-to-misuse program.
-
Beginner: how to do basic cryptography for a blog
In your case, use a tool such as https://jedisct1.github.io/minisign/ to do signing/verification. GPG is another choice which is very common. It will produce a "signature" which can be embedded alongside your posts verifying that the text of the post was endorsed by someone bearing the given public key.
-
Is it worth it to make the move to ProtonMail & VPN?
Claiming it's not ancient because Linux desktop distributions still use it for signing packages is a very odd argument. Most Cryptography experts (note: I'm not talking about programmers, IT professionals or people who know a thing or two about cryptography, I mean actual cryptographers) would agree that we should start using something like signify or minisign instead of the bloated mess that is GPG for signing package repositories.
-
Hacker News top posts: Dec 23, 2021
minisign\ (5 comments)
- minisign
- Show HN: Pagesign – A Python Wrapper for Age and Minisign
signify
-
PGP signatures on PyPI: worse than useless
There are alternatives, minisign and signify.
- A New Future for GnuPG
-
Is it worth it to make the move to ProtonMail & VPN?
Claiming it's not ancient because Linux desktop distributions still use it for signing packages is a very odd argument. Most Cryptography experts (note: I'm not talking about programmers, IT professionals or people who know a thing or two about cryptography, I mean actual cryptographers) would agree that we should start using something like signify or minisign instead of the bloated mess that is GPG for signing package repositories.
What are some alternatives?
age - A simple, modern and secure encryption tool (and Go library) with small explicit keys, no config options, and UNIX-style composability.
OpenVi - OpenVi: Portable OpenBSD vi for UNIX systems
age-plugin-yubikey - YubiKey plugin for age
opmsg - opmsg message encryption
ed25519 - Minimal ed25519 Haskell package, binding to the ref10 SUPERCOP implementation.
kyber
mkp224o - vanity address generator for tor onion v3 (ed25519) hidden services
sign - Digital file signing and signature verfication utility
mkcert - A simple zero-config tool to make locally trusted development certificates with any names you'd like.
s2n - An implementation of the TLS/SSL protocols
fq - jq for binary formats - tool, language and decoders for working with binary and text formats
libvips - A fast image processing library with low memory needs.