Would it be possible to provide the MD5 and SHA1 checksum of gradle on the downloads page? Otherwise I have no way to verify that the gradle zip I have is correct or untampered with.
We now publish sha256 checksums with every release. We’ve also backfilled the data for older releases.