summaryrefslogtreecommitdiff
path: root/security/py-signxml/pkg-descr
diff options
context:
space:
mode:
Diffstat (limited to 'security/py-signxml/pkg-descr')
-rw-r--r--security/py-signxml/pkg-descr21
1 files changed, 21 insertions, 0 deletions
diff --git a/security/py-signxml/pkg-descr b/security/py-signxml/pkg-descr
new file mode 100644
index 000000000000..b16692a92a68
--- /dev/null
+++ b/security/py-signxml/pkg-descr
@@ -0,0 +1,21 @@
+SignXML is an implementation of the W3C XML Signature standard in Python. This
+standard (also known as "XMLDSig") is used to provide payload security in SAML
+2.0, XAdES, EBICS, and WS-Security, among other uses. The standard is defined in
+the W3C Recommendation XML Signature Syntax and Processing Version 1.1. SignXML
+implements all of the required components of the Version 1.1 standard, and most
+recommended ones. Its features are:
+- Use of a libxml2-based XML parser configured to defend against common XML
+ attacks when verifying signatures
+- Extensions to allow signing with and verifying X.509 certificate chains,
+ including hostname/CN validation
+- Extensions to sign and verify XAdES signatures
+- Support for exclusive XML canonicalization with inclusive prefixes
+ (InclusiveNamespaces PrefixList, required to verify signatures generated by
+ some SAML implementations)
+- Modern Python compatibility (3.9-3.13+ and PyPy)
+- Well-supported, portable, reliable dependencies: lxml and cryptography
+- Comprehensive testing (including the XMLDSig interoperability suite) and
+ continuous integration
+- Simple interface with useful, ergonomic, and secure defaults (no network
+ calls, XSLT or XPath transforms)
+- Compactness, readability, and extensibility
generated by cgit v1.2.3 (git 2.25.1) at 2025-09-08 23:39:04 +0000