tor-browser-spec issueshttps://gitlab.torproject.org/tpo/applications/tor-browser-spec/-/issues2023-01-09T17:43:32Zhttps://gitlab.torproject.org/tpo/applications/tor-browser-spec/-/issues/40047Make human summary of Tor Browser design doc2023-01-09T17:43:32ZMike PerryMake human summary of Tor Browser design docWe should create a brief human-readable summary of the privacy properties of TBB, based on the Design Requirements.
We should probably include this in the short user manual, or on the download page, or both.
See also https://lists.torp...We should create a brief human-readable summary of the privacy properties of TBB, based on the Design Requirements.
We should probably include this in the short user manual, or on the download page, or both.
See also https://lists.torproject.org/pipermail/tor-talk/2012-January/022899.html.https://gitlab.torproject.org/tpo/applications/tor-browser-spec/-/issues/32715Document our downloads.json file2022-12-09T13:20:20ZGeorg KoppenDocument our downloads.json fileWe have https://aus1.torproject.org/torbrowser/update_3/release/downloads.json (and a similar URL for alpha (s/release/alpha)) for users/devs that want to keep a reliable way for grabbing the latest updates or pull the latest version inf...We have https://aus1.torproject.org/torbrowser/update_3/release/downloads.json (and a similar URL for alpha (s/release/alpha)) for users/devs that want to keep a reliable way for grabbing the latest updates or pull the latest version information so that they can see when new updates are available.
The JSON file got specifically created to be easily parsable in legacy/trac#16651. This seems to work pretty well from all we know but we never documented that feature nor specified it.
We think this should finally be mentioned on our dev portal and we should write kind of a retroactive proposal and put it into our proposal folder in `tor-browser-spec` so that we have something official we can link to.https://gitlab.torproject.org/tpo/applications/tor-browser-spec/-/issues/18820Integrate code signing into the release process2022-12-09T13:20:14ZGeorg KoppenIntegrate code signing into the release processWe should integrate the OS X code signing as good as we can into our release process. We have the following pieces at the moment
1) We create a .dmg file as the result of our build process
2) We have a signing machine where these files ...We should integrate the OS X code signing as good as we can into our release process. We have the following pieces at the moment
1) We create a .dmg file as the result of our build process
2) We have a signing machine where these files need to get transferred to
3) We need to sign the TorBrowser.app inside the .dmg file
4) We need to ship the .dmg file with the signed app
Taking these into account it seems quite cumbersome to automate this even a bit. But maybe there is something I am missing.
This ticket is not about signing/removing the signature in a reproducible fashion. Getting this going is very likely a separate fun task.