Disallow weak hashing algorithms
Do not allow uploads of source=() with only weak cryptographic hashing algorithms but require at least one strong algorithm.
This doesn't 100% enforce it ofcourse, but it allows for an early
failure instead of failing in db-update.