From 6c4440d0e9125a27f9c31ca95ea498de2921bdb8 Mon Sep 17 00:00:00 2001
From: Kirill chEbba Chebunin <iam@chebba.org>
Date: Fri, 30 Sep 2011 22:58:58 +0400
Subject: [PATCH] Add todo for signed phars

---
 src/Composer/Downloader/PharDownloader.php | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/src/Composer/Downloader/PharDownloader.php b/src/Composer/Downloader/PharDownloader.php
index 290b0281e..83a38a4a3 100644
--- a/src/Composer/Downloader/PharDownloader.php
+++ b/src/Composer/Downloader/PharDownloader.php
@@ -29,5 +29,10 @@ class PharDownloader extends FileDownloader
         // Can throw an UnexpectedValueException
         $archive = new \Phar($file);
         $archive->extractTo($path);
+        /* TODO: handle openssl signed phars
+         * https://github.com/composer/composer/pull/33#issuecomment-2250768
+         * https://github.com/koto/phar-util
+         * http://blog.kotowicz.net/2010/08/hardening-php-how-to-securely-include.html
+         */
     }
 }