warder

A forum was discussing that 7-zip installers are not digitally signed, so I suggested to use the SHA-256 hash to validate the downloaded files. However 7-zip is unusual in that project releases are neither signed nor provide the file hashes. For the purpose of users to validate the files are those posted, can you publish the hashes at build time and have these posted on the website? Thanks for a great product!