Describe the bug: PGPKeySource field accepts any string but no validation when loading config.
To reproduce:
- Edit config.json, set pgp_key_source: "invalid"
- Load config - no error
- Later code assumes valid value
Expected behavior: Validate on config load to ensure value is "file" or "yubikey" only.
Additional context:
- File: config/config.go
- Severity: Low
- Fix: Add validation function
Describe the bug: PGPKeySource field accepts any string but no validation when loading config.
To reproduce:
Expected behavior: Validate on config load to ensure value is "file" or "yubikey" only.
Additional context: