|Paste number 311109:||b|
|When:||5 years, 8 months ago|
|Share:||Tweet this! | http://paste.lisp.org/+6O1X|
I would like to propose one idea to manage this: What about adding a field to the system configuration for a list of 'trusted-binaries'? guix requires gcc binaries (and some other things) to bootstrap off so these things are all implicitly trusted binaries. My suggestion is to make that list explicit and allow people to add things like the ocaml compiler to it. Trying to install the ocaml compiler could give an error about an untrusted binary unless the user has added that to their system configuration.
This paste has no annotations.