Now that recipes can be added via the config rather than jar editing, can the recipe files inside the jar be signed like the rest (or most?) of it is, to prevent problems like this: http://bt.industrial-craft.net/view.php?id=1693?
They are (afaik) signed, but the verification is very much in the class loading mechanism, which obviously doesn't apply to non-class files. I'll think about a solution..
