GitHub
CRAN
notary
: Signing and Verification of R Packages
More for users:
CRAN-ish
install_packages
: Install and verify packagesdownload_packages
: Download and verify packagesavailable_packages
: Download and verify package indicesGitHub-ish
install_release
: Validate that the current GitHub release is GPG signed and install it if sovalidate_release
: Validate that the current GitHub release is GPG signedretrieve_release_signature
: Retrieve the GitHub signing information for the latest release of a packageget_tags
: Retrieve a data frame of GitHub package tag (release) infosource()
-ish
source_safe_sign
: Source a file with verificationsys_source_safe_sign
: Source a file with verificationMore for plumbers:
package_index_prepare
: Prepare a package indexhttps://ropenscilabs.github.io/r-security-practices/index.html
library(notary)
library(tidyverse)
validate_release("hrbrmstr/hrbrthemes")
## Repo/Package: hrbrmstr/hrbrthemes (v0.3.0)
## Committer: Bob Rudis <bob@rud.is>
## GitHub Verified: TRUE
## GPG Fingerprint: 3773E53B2013A722FA67C6F02A514A4997464560
## Trusted peer: TRUE
## Timestamp: 2017-05-10 11:15:21
## Algorithm: RSA + SHA256
validate_release("ironholds/rgeolocate")
## Repo/Package: ironholds/rgeolocate (0.8.0)
## Committer: Oliver Keyes <ironholds@gmail.com>
## GitHub Verified: FALSE
## GPG Fingerprint:
## Trusted peer:
## Timestamp:
## Algorithm: +
retrieve_release_signature("hrbrmstr/ggalt")
## Latest release is not signed or has not been verified
## NULL
glimpse(get_tags("hrbrmstr/hrbrthemes"))
## Observations: 2
## Variables: 9
## $ user <chr> "hrbrmstr", "hrbrmstr"
## $ repo <chr> "hrbrthemes", "hrbrthemes"
## $ tag <chr> "v0.3.0", "v0.1.0"
## $ committer <chr> "Bob Rudis", "boB Rudis"
## $ committer_email <chr> "bob@rud.is", "bob@rud.is"
## $ verified <lgl> TRUE, FALSE
## $ reason <chr> "-----BEGIN PGP SIGNATURE-----\n\niQIcBAABCAAGBQJZE1i5AAoJECpRSkmXRkVgYzAP/je9bp3imLA9LZPOF...
## $ signature <chr> "-----BEGIN PGP SIGNATURE-----\n\niQIcBAABCAAGBQJZE1i5AAoJECpRSkmXRkVgYzAP/je9bp3imLA9LZPOF...
## $ payload <chr> "tree d2959bd73ad3af822e7370553242fbf045438e8d\nparent 52539bf3dc91776c8cb988efdca6565b8b69...
get_tags("tidyverse/dplyr")
## # A tibble: 14 x 9
## user repo tag committer committer_email verified reason signature payload
## <chr> <chr> <chr> <chr> <chr> <lgl> <chr> <chr> <chr>
## 1 tidyverse dplyr v0.6.0-rc hadley h.wickham@gmail.com FALSE <NA> <NA> <NA>
## 2 tidyverse dplyr v0.5.0 hadley h.wickham@gmail.com FALSE <NA> <NA> <NA>
## 3 tidyverse dplyr v0.4.3 Romain Francois romain@r-enthusiasts.com FALSE <NA> <NA> <NA>
## 4 tidyverse dplyr v0.4.2 hadley h.wickham@gmail.com FALSE <NA> <NA> <NA>
## 5 tidyverse dplyr v0.4.1 hadley h.wickham@gmail.com FALSE <NA> <NA> <NA>
## 6 tidyverse dplyr v0.4.0 hadley h.wickham@gmail.com FALSE <NA> <NA> <NA>
## 7 tidyverse dplyr v0.3.0.1 Hadley Wickham h.wickham@gmail.com FALSE <NA> <NA> <NA>
## 8 tidyverse dplyr v0.3 hadley h.wickham@gmail.com FALSE <NA> <NA> <NA>
## 9 tidyverse dplyr v0.2.0 hadley h.wickham@gmail.com FALSE <NA> <NA> <NA>
## 10 tidyverse dplyr v0.1.3 hadley h.wickham@gmail.com FALSE <NA> <NA> <NA>
## 11 tidyverse dplyr v0.1.2 hadley h.wickham@gmail.com FALSE <NA> <NA> <NA>
## 12 tidyverse dplyr v0.1.2-cran-rc hadley h.wickham@gmail.com FALSE <NA> <NA> <NA>
## 13 tidyverse dplyr v0.1.1 Romain François romain@r-enthusiasts.com FALSE <NA> <NA> <NA>
## 14 tidyverse dplyr v0.1 hadley h.wickham@gmail.com FALSE <NA> <NA> <NA>
Please note that this project is released with a Contributor Code of Conduct. By participating in this project you agree to abide by its terms.
Add the following code to your website.
For more information on customizing the embed code, read Embedding Snippets.