In the section - Sign the Pass in https://developer.apple.com/documentation/walletpasses/building_a_pass .
It states to use SHA1 hash for the source file of the pass. I have two questions regarding the same:
- Is it still the preferred way to use SHA1 considering it being non PCI compliant and legacy one.
- Can we use SHA256 to sign the pass? If yes, then will it be compatible with latest iOS that may expect pass to be SHA1 hashed?
- If SHA1 is the way to go, then what is the expected timeframe to deprecate it with introduction of SHA256 for pass?
Any help would be greatly appreciated.