- make the build system reproducable, so that every build is exactly the same binary, no matter who runs it. that's "easy". But you don't know why you get that exact binary
- make the build system verifiable, or the resulting binary verifiable so that you know exactly why you get that binary. This is hard.
- make the build system reproducable, so that every build is exactly the same binary, no matter who runs it. that's "easy". But you don't know why you get that exact binary
- make the build system verifiable, or the resulting binary verifiable so that you know exactly why you get that binary. This is hard.
The first one is repeatable, reliable.
The second one is trustworthy, verifiable.