When I launched Gradle 3.4 for the first time, my Windows 7 box blacked out. Instant death.
Nothing could be found on it, so it was probably just an unfortunate coincidence.
But since then, I have a very bad feeling whenever I download a new release.
Which is a shame, because I look forward to testing the new release.
Searching the forums shows that I am not alone:
I would really like for the release note to include SHA2±sums for the distribution archives.
It might not be the best solution (that would be signing), but it should be such a small effort to implement that it is hard (for an outsider) to understand, why it has still not been done.