Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

For compiling and running the latest version, https://github.com/userdocs/qbittorrent-nox-static is a nice helper script to build a static binary using Docker - I wanted to run 5.0.0 using libtorrent 1.2, and found the script by far the easiest way.


*inserts backdoor*


There are attestations that the binaries were built via CI:

https://userdocs.github.io/qbittorrent-nox-static/artifact-a...

Here's a verification of the latest build:

  gh attestation verify x86_64-qbittorrent-nox -o userdocs
  Loaded digest sha256:af9ceace3fea1418ebd98cd7a8a7b6e06c3d8d768f4d9c9ce0d3e9a3256f40d9 for file://x86_64-qbittorrent-nox
  Loaded 1 attestation from GitHub API
   Verification succeeded!

  sha256:af9ceace3fea1418ebd98cd7a8a7b6e06c3d8d768f4d9c9ce0d3e9a3256f40d9 was attested by:
  REPO                             PREDICATE_TYPE                  WORKFLOW
  userdocs/qbittorrent-nox-static  https://slsa.dev/provenance/v1  .github/workflows/matrix_multi_build_and_release_qbt_workflow_files.yml@refs/heads/master




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: