ZipSign is a command line tool sign and verify ZIP archives.
ZipSign uses Cryptographic Message Syntax (CMS) to sign Zip archives. The signature is stored within the Zip archive's comment. See the "How it works" section on zipsign's GitHub page for further details.
Sign a Zip Archive
zipsign sign -f archive.zip -p private-key.pem -c cert.pem
Verify a previously signed Zip Archive
zipsign verify -f archive.zip -c cert.pem
Features
Limitation of Snap-Version
The snap limits access to files within the home directory of the current user. To overcome this issue, you can compile the tool from source. If you prefer precompiled binaries or .deb-packages, please leave an issue on zipsign's github page.
You are about to open
Do you wish to proceed?
Thank you for your report. Information you provided will help us investigate further.
There was an error while sending your report. Please try again later.
Snaps are applications packaged with all their dependencies to run on all popular Linux distributions from a single build. They update automatically and roll back gracefully.
Snaps are discoverable and installable from the Snap Store, an app store with an audience of millions.
Snap can be installed on elementary OS from the command line. Open Terminal from the Applications launcher and type the following:
sudo apt update
sudo apt install snapd
Either log out and back in again, or restart your system, to ensure snap’s paths are updated correctly.
To install zipsign, simply use the following command:
sudo snap install zipsign
Browse and find snaps from the convenience of your desktop using the snap store snap.
Interested to find out more about snaps? Want to publish your own application? Visit snapcraft.io now.