[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Emacs-diffs] master f1f2de7: Recommend using https for package-archives

From: Stefan Kangas
Subject: [Emacs-diffs] master f1f2de7: Recommend using https for package-archives
Date: Fri, 20 Sep 2019 13:23:06 -0400 (EDT)

branch: master
commit f1f2de7cdfa5e20577bbc2e2bf29de4cce525002
Author: Stefan Kangas <address@hidden>
Commit: Stefan Kangas <address@hidden>

    Recommend using https for package-archives
    * lisp/emacs-lisp/package.el (package-archives): Recommend using https
    sources where possible.  (Bug#33825)
 lisp/emacs-lisp/package.el | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/lisp/emacs-lisp/package.el b/lisp/emacs-lisp/package.el
index ef0c517..1e136cb 100644
--- a/lisp/emacs-lisp/package.el
+++ b/lisp/emacs-lisp/package.el
@@ -214,7 +214,10 @@ Each element has the form (ID . LOCATION).
   (Other types of URL are currently not supported.)
 Only add locations that you trust, since fetching and installing
-a package can run arbitrary code."
+a package can run arbitrary code.
+HTTPS URLs should be used where possible, as they offer superior
   :type '(alist :key-type (string :tag "Archive name")
                 :value-type (string :tag "URL or directory name"))
   :risky t

reply via email to

[Prev in Thread] Current Thread [Next in Thread]