Thread: Can we get hashes or signatures added to Calibre?
View Single Post
Old 02-15-2022, 02:19 PM   #3
DNSB
Bibliophagist
DNSB ought to be getting tired of karma fortunes by now.DNSB ought to be getting tired of karma fortunes by now.DNSB ought to be getting tired of karma fortunes by now.DNSB ought to be getting tired of karma fortunes by now.DNSB ought to be getting tired of karma fortunes by now.DNSB ought to be getting tired of karma fortunes by now.DNSB ought to be getting tired of karma fortunes by now.DNSB ought to be getting tired of karma fortunes by now.DNSB ought to be getting tired of karma fortunes by now.DNSB ought to be getting tired of karma fortunes by now.DNSB ought to be getting tired of karma fortunes by now.
 
DNSB's Avatar
 
Posts: 47,076
Karma: 169815798
Join Date: Jul 2010
Location: Vancouver
Device: Kobo Sage, Libra Colour, Lenovo M8 FHD, Paperwhite 4, Tolino epos
Quote:
Originally Posted by V48K8B6ZDQD37 View Post
Currently there is no way AFAIK to validate that the Calibre binaries are the same as those from the devs. Can we get SHA256 hashes on the Calibre website, or perhaps get the binaries signed by a GPG key that we can verify on our own devices?

Cheers
If you look at the calibre downloads page, you might notice a line that reads:

Signatures for all the calibre installer files are here.

Click on the "here" and enjoy the signatures for the V5 calibre releases.

BTW, a quick Google search on "calibre signatures" returned that page as the first result.
Last edited by DNSB; 02-15-2022 at 02:21 PM. Reason: Changed all calibre releases to V5 calibre releases.
DNSB is offline   Reply With Quote