[GH-ISSUE #3717] [FR] hash of the releases #1686

New issue

Open

opened 2026-03-23 21:15:59 +00:00 by mirror · 1 comment

mirror commented 2026-03-23 21:15:59 +00:00

Owner

Copy link

Originally created by @ysk3a on GitHub (Oct 17, 2023).
Original GitHub issue: https://github.com/AppFlowy-IO/AppFlowy/issues/3717

Description

Adding hash codes of the releases under the github release page would be nice to verify the integrity of the zip/executable.
e.g. SHA256SUMS.txt

Another extra nice to have is to be able to fetch signing key and .asc signature file to verify as well.

I would like to verify the file if possible since after submitting the zip for windows and tar for linux to virustotal,
resulted in a trojan warning.

I'm not sure if this may be a false positive but wanted to make sure by verifying.
https://www.virustotal.com/gui/file/872b249d590493718f2daa470489e918fb646dfaf98dd6b298e498a8a72ed11f
https://www.virustotal.com/gui/file/006a12152b740cc2df49060c706943ee3202f7d0177f8fb5117d0b1e2982d4c8

And when trying to download the windows executable, particularly through Edge browser, it provides warning that publisher is unknown and also virustotal resulted in some malicious flags.
https://www.virustotal.com/gui/file/eaadfa17085e134a480d7241d9bbcf37f44a8358bc78ab7dee83655a5f8b024b

Virustotal didn't output any red flags for the .deb file though.

My targeted os: windows10, debian/ubuntu spins.

Impact

for the somewhat privacy and security paranoid type like myself.

Additional Context

No response

Originally created by @ysk3a on GitHub (Oct 17, 2023). Original GitHub issue: https://github.com/AppFlowy-IO/AppFlowy/issues/3717 ### Description Adding hash codes of the releases under the github release page would be nice to verify the integrity of the zip/executable. e.g. SHA256SUMS.txt Another extra nice to have is to be able to fetch signing key and .asc signature file to verify as well. I would like to verify the file if possible since after submitting the zip for windows and tar for linux to virustotal, resulted in a trojan warning. I'm not sure if this may be a false positive but wanted to make sure by verifying. https://www.virustotal.com/gui/file/872b249d590493718f2daa470489e918fb646dfaf98dd6b298e498a8a72ed11f https://www.virustotal.com/gui/file/006a12152b740cc2df49060c706943ee3202f7d0177f8fb5117d0b1e2982d4c8 And when trying to download the windows executable, particularly through Edge browser, it provides warning that publisher is unknown and also virustotal resulted in some malicious flags. https://www.virustotal.com/gui/file/eaadfa17085e134a480d7241d9bbcf37f44a8358bc78ab7dee83655a5f8b024b Virustotal didn't output any red flags for the .deb file though. My targeted os: windows10, debian/ubuntu spins. ### Impact for the somewhat privacy and security paranoid type like myself. ### Additional Context _No response_

mirror added the

platform-windows

new feature

labels 2026-03-23 21:15:59 +00:00

mirror commented 2026-03-23 21:16:01 +00:00

Author

Owner

Copy link

@Dragnyte commented on GitHub (Dec 8, 2025):

Same error for me, i don't want use this soft with a trojan

<!-- gh-comment-id:3628742653 --> @Dragnyte commented on GitHub (Dec 8, 2025): Same error for me, i don't want use this soft with a trojan

mirror referenced this issue 2026-03-23 22:16:17 +00:00

[PR #1686] [MERGED] chore: potential fail on trash bloc test #4893

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

main

copilot/fix-date-format-issue

feat/mention_a_person

merge_upstream_v6

mobile/release/0.9.3

release/0.9.3

release/0.9.2

select_source

release/0.9.1

refactor_import_data

release/0.8.9.1

release/0.8.9

anon_user_mode

release/0.8.8

fix_windows_selection

release/0.8.7

annieappflowy-patch-1

windows_local_ai

release/0.8.6

release/0.8.5

release/0.8.4

chore/optional-response-format

release/0.8.3

release/0.8.2

release/0.8.1

release/0.8.0

release/0.7.9

feat/support-rename-workspace

chat_rag_only

calculate_ui_test

release/0.7.8

release/0.7.7

stringfi_cells

hotfix/0.7.5

release/0.7.4

client-api-update

feat/collab-editing

fix_calculation_bug

feat/upload-file-in-document

update-client-api

feat/support-global-comment-on-web

update-client-api-2

feat/support-duplicate-publish-on-web

feat/ai-plan-billing

chore/test-web-deploy

chore/enable-billing-for-testing

build/test

ai_tag_feature

chore/enable-billing-plan

feat/billing-client-windows

chore/support-openai-chat

fix/try-no-media-kit

sign-in-error-format

workspace-invite-ci-test

last-workspace

workspace-invite-wip

feat/date-text-input

appflowy_v1

0.11.1

0.11.0

0.10.9

0.11.2

0.10.7

0.10.6

0.10.5

0.11.3

0.11.4

0.10.8

0.10.4

0.10.3

0.10.2

0.10.0

0.10.1

0.9.9

0.9.8

0.9.7

0.9.5

0.9.6

0.9.4

0.9.3

0.9.2

0.9.1

0.9.0

0.8.9

0.8.8

0.8.7

0.8.6

0.8.5

0.8.4

0.8.3

0.8.2

0.8.1

0.8.0

0.7.9

0.7.8

0.7.7

0.7.6

0.7.5

0.7.4

0.7.3

0.7.2

0.7.1

0.7.0

0.6.9

0.6.8

0.6.7.2

0.6.7.1

0.6.7

0.6.6

0.6.5

0.6.4

0.6.3

0.6.2

0.6.1

v0.6.1

0.6.0

0.5.9

0.5.8

0.5.7

0.5.6

0.5.5

0.5.4

0.5.3

0.5.2

0.5.1

0.5.0

0.4.9

0.4.8

0.4.7

0.4.6

0.4.5

0.4.4

0.4.3

0.4.2

0.4.1

0.4.0

0.3.9.1

0.3.9

0.3.8

0.3.7

0.3.6

0.3.5

0.3.4

0.3.3

0.3.2

0.3.1

0.3.0

0.2.9

0.2.8

0.2.7

0.2.6

0.2.5

0.2.4

0.2.3

0.2.2

0.2.1

0.2.0

0.1.6

0.1.5

0.1.4

0.1.3

0.1.2

0.1.1

0.1.0

0.0.9.1

0.0.9

0.0.8.1

0.0.8

0.0.7.1

0.0.7

0.0.6.2

0.0.6.1

0.0.6

0.0.6_beta.1

0.0.5.3

0.0.5.2

0.0.5.1

0.0.5

0.0.5_beta.2

0.0.5_beta.1

0.0.4

0.0.4_beta.3

0.0.4_beta.2

0.0.4_beta.1

0.0.3

0.0.3_beta.2

0.0.3_beta.1

0.0.2

0.0.1

Labels

Clear labels   

2024

  

2025

  

2026

  

acct mgmt

  

AI

  

automation

  

bug

  

calendar

  

ci

  

CJK

  

cloud

  

code-block

  

collaboration

  

copy-paste

  

database

  

data migration

  

data sync

  

deploy

  

desktop

  

develop

  

develop

  

documentation

  

duplicate

  

editor

  

editor-plugin

  

emoji

  

export

  

files

  

flutter-only

  

follow-up

  

formula

  

good first issue for devs

  

good first issue for experienced devs

  

grid

  

hacktoberfest

  

HACKTOBERFEST-ACCEPTED

  

help wanted

  

i18n

  

icons

  

images

  

importer

  

improvements

  

infra

  

install

  

integrations

  

IR

  

kanban board

  

login

  

look and joy

  

mentorship

  

mobile

  

mobile

  

needs design

  

new feature

  

new feature

  

non-coding

  

notes

  

notifications

  

onboarding

  

organization

  

P0+

  

permission

  

platform-linux

  

platform-mac

  

platform-windows

  

plugins

  

program

  

pull-request

Mirrored from GitHub Pull Request

  

Q1 25

  

Q1 26

  

Q2 24

  

Q2 25

  

Q3 24

  

Q3 25

  

Q4 24

  

Q4 25

  

react

  

regression

  

rust

  

rust

  

Rust-only

  

Rust-only

  

Rust-starter

  

Rust-starter

  

self-hosted

  

shortcuts

  

side panel

  

slash-menu

  

sync v2

  

table

  

tablet

  

task

  

tauri

  

templates

  

tests

  

themes

  

translation

  

v0.5.6

  

v0.5.8

  

v0.5.9

  

v0.6.0

  

v0.6.1

  

v0.6.4

  

v0.6.7

  

v0.6.8

  

v0.7.1

  

v0.7.4

  

v0.7.4

  

v0.7.5

  

v0.7.6

  

v0.7.7

  

v0.7.8

  

v0.8.0

  

v0.8.4

  

v0.8.5

  

v0.8.9

  

web

No labels

2024

2025

2026

acct mgmt

AI

automation

bug

calendar

ci

CJK

cloud

code-block

collaboration

copy-paste

database

data migration

data sync

deploy

desktop

develop

develop

documentation

duplicate

editor

editor-plugin

emoji

export

files

flutter-only

follow-up

formula

good first issue for devs

good first issue for experienced devs

grid

hacktoberfest

HACKTOBERFEST-ACCEPTED

help wanted

i18n

icons

images

importer

improvements

infra

install

integrations

IR

kanban board

login

look and joy

mentorship

mobile

mobile

needs design

new feature

new feature

non-coding

notes

notifications

onboarding

organization

P0+

permission

platform-linux

platform-mac

platform-windows

plugins

program

pull-request

Q1 25

Q1 26

Q2 24

Q2 25

Q3 24

Q3 25

Q4 24

Q4 25

react

regression

rust

rust

Rust-only

Rust-only

Rust-starter

Rust-starter

self-hosted

shortcuts

side panel

slash-menu

sync v2

table

tablet

task

tauri

templates

tests

themes

translation

v0.5.6

v0.5.8

v0.5.9

v0.6.0

v0.6.1

v0.6.4

v0.6.7

v0.6.8

v0.7.1

v0.7.4

v0.7.4

v0.7.5

v0.7.6

v0.7.7

v0.7.8

v0.8.0

v0.8.4

v0.8.5

v0.8.9

web

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

AppFlowy-IO/AppFlowy#1686

No description provided.