Forum Discussion

New Contributor

7 months ago

Request for more technical release information

Hi 1password team, I was wondering if there is a changelog of all application releases with SHA256 signatures? The claim is that a public list of known releases helps with tracking signed binar...

macos

PaidUser0011

New Contributor

7 months ago

Hi Dave,

Thanks for the reply.

Regarding
"signed binaries in the wild"?

Having a list of signed binaries (specifically their sha256 checksums or equivalent) helps with zero trust auditing, especially for when things go wrong.

The security community can independently verify all production binaries of 1Password that has ever been released and detect "special builds" that aren't supposed to be released.

It is a statement an entity says to everyone - this is the only checksum for this version / architecture of 1Password, if you see any other checksum - send it to us so we can trackdown where it came from.

Forum Discussion

Request for more technical release information

Recent Discussions

Why does the Chrome browser extension "crash"? And why are settings reset each time?

1Password cannot sync with Orange France mobile data

1Pwd desktop export is slow and may fail

Generated secure password should include a number

Apple Notes iPadOS Secure Notes Auto-fill