From 7120c4a7484d5a960c94f92ae67057c6a7881d15 Mon Sep 17 00:00:00 2001
From: Jay Berkenbilt <ejb@ql.org>
Date: Sun, 25 Oct 2020 17:59:34 -0400
Subject: Use sha256 for signing release files

---
 ChangeLog | 4 ++++
 1 file changed, 4 insertions(+)

(limited to 'ChangeLog')

diff --git a/ChangeLog b/ChangeLog
index 2cc8ec3e..a08ef305 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,5 +1,9 @@
 2020-10-25  Jay Berkenbilt  <ejb@ql.org>
 
+	* When signing distribution files, generate sha256 checksums
+	instead of md5, sha1, and sha512. sha256 seems to be more widely
+	used, and there's no reason to use md5 or sha1 anymore.
+
 	* Official Windows releases are now built using the openssl crypto
 	provider. The native provider is still available for selection at
 	runtime using the QPDF_CRYPTO_PROVIDER environment variable.
-- 
cgit v1.2.3-54-g00ecf