Nit: there’s nothing “cryptographic” about reproducible builds.
“Reproducible build” already usually implies bit-by-bit reproducibility.
Nit: there’s nothing “cryptographic” about reproducible builds.
“Reproducible build” already usually implies bit-by-bit reproducibility.
I meant with Nix you're comparing hashes. With Docker, you're using pinned versions
“The reproducibility is cryptographically verifiable with hashes“ would be the full sentence, but it’s a mouthful.
i thought it mainly implied architectural/hardware compatibility and deterministic output