Compute the SHA‑256 or SHA‑1 file hash

Views:

Use SHA‑256 instead of SHA‑1 when adding new file hashes. SHA‑256 provides stronger security than SHA-1. Consider establishing a build pipeline step to auto‑compute hashes and submit updated exceptions after each compile/release. Periodically review and prune stale hashes.

For SHA‑1, replace SHA256 below with SHA1.

Procedure

Use a trusted hashing tool or script that supports SHA‑256 and SHA‑1.
For Windows:
1. Open PowerShell.
2. Run the following command replacing C:\Path\To\File.exe with the path to the executable file:
```
Get-FileHash "C:\Path\To\File.exe" -Algorithm SHA256
```
For macOS or Linux:
1. Open Terminal.
2. Run the following command replacing path/to/file.exe with the path to the executable file:
  shasum -a 256 /path/to/file.exe