DLL files created without version infos.
Security is like sex: when it's good, it's very, very good when it's bad, it's better than nothing. Since MD5 has been already implemented in Notepad++, so it’s used currently: Using SHA1 or SHA2 instead of MD5 means Notepad++ should implement the SHA1 or SHA2 algorithm - I could be wrong but I think there’s no easy way to implement it without overhead (OpenSSL). Plugin (DLL) hash is generated and submitted by plugin author in plugin list, and it will be verified by Notepad++ after the installation - if the hash is not matched then the installation will be removed. In the latter case, the use of a newer hashing tool such as sha256sum is recommended. Thus, while md5sum is well-suited for identifying known files in situations that are not security related, it should not be relied on if there is a chance that files have been purposefully and maliciously tampered. The underlying MD5 algorithm is no longer deemed secure.