I’m publishing an open-source library on CodePlex, and want the dll files to have

Question

0

Asked: May 14, 20262026-05-14T01:26:38+00:00 2026-05-14T01:26:38+00:00

I’m publishing an open-source library on CodePlex, and want the dll files to have

0

I’m publishing an open-source library on CodePlex, and want the dll files to have strong names so that they can be added to GAC.

What’s the best option for signing?

Should I use SNK? If so, everyone have access to the key. I don’t have a problem with everyone having access, but is it a good approach?

Should I use PFX? If so, does it mean that other people downloading the source code are not able to build the solution?

What I like to do is that I am the only one person to have access to the key, so that the signed assemblies also have a level of authenticity, but meanwhile don’t prevent other developers to download, build, or change the source code for themselves, and be able to post changes for the main project.

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-14T01:26:39+00:00

Editorial Team

2026-05-14T01:26:39+00:00Added an answer on May 14, 2026 at 1:26 am

What I do with my projects on CodePlex is publishing the releases strongly signed with a SNK. This SNK however, is not in source control and not publicly available. Therefore, I am the only one who can strongly sign the assemblies with this key. I explained that here.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I’m publishing an open-source library on CodePlex, and want the dll files to have

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply