Much like a Java JAR can be signed, can a SWC be cryptographically signed, and that signature find its way into in the finished SWF?
I asked because I need to supply a SWC file along with its Flex sources to a 3rd party.
To guard against changes to the sources, I also need to assert that the supplied SWC is the one linked into a finished SWF, rather than the (possibly amended) sources.
Is there a means of doing this using the Flex toolchain?
The typical way of doing what you're asking is to create an md5 checksum on the swc that you build and send the third party the md5 checksum. The third party can then verify the swc against the md5 to ensure it's a bit for bit perfect copy.