Hello,
I have recently started co-maintaining co-maintaining the inkdrop package in the Arch Linux User Repository. Our package is built using the zip archive that you provide on your download page. It is common practice to check an md5 (or sha…) sum of the zip after downloading as part of the package build process.
Would you be willing to provide a sum of the zip archive on the download page to make this process easier and more secure?
Hi Parker,
Thank you for the suggestion.
I appreciate that you maintain the package in the Arch Linux User Repository!
Yeah, I agree that a checksum for the zip archive is necessary.
I have to automate generating it… 
Hi,
Now you can get md5 checksum for each file by checking HTTP header field x-amz-meta-md5sum like:
curl --head https://d3ip0rje8grhnl.cloudfront.net/v3.20.2/Inkdrop-3.20.2-Mac.zip
HTTP/2 200
content-type: application/zip
content-length: 90274339
date: Sat, 21 Jul 2018 08:29:52 GMT
last-modified: Fri, 20 Jul 2018 11:42:48 GMT
etag: "67d97e1966a9203337bce90f48fd5c25-11"
x-amz-storage-class: REDUCED_REDUNDANCY
x-amz-meta-md5sum: df99f0461dbb0dc58cdc857b117156e6
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 944f9b077395c4096632745e3e71373a.cloudfront.net (CloudFront)
x-amz-cf-id: YmhyMGwhbmmgyNaG9AMdJxCDCO2E8IUDUUI6CE7UlmdvPaeVzSH6Vw==
Thanks again for your suggestion!
Hi,
Thank you for this change! I used it create the new package for 3.20.2 for the AUR.
Cool. Thanks so much!