Google has devised a means for securing HTTPS certificates against quantum computing attacks without massive performance hits stemming from the considerably longer size of data required to be included.

@sophieschmieg @andrei_chiffa @dangoodin I’m a bit confused by this. The client is still going to need the public keys, right? So is this just replacing the signatures with a Merkle proof? Have you done a blockchain??!

I’m sure this has been said many times, but SemVer needs a spec. Otherwise every change is breaking. (Doesn’t need to be a formal spec: man page, API docs, whatever. But it does need to actually say what expected behaviour is).