Add gpg key #50
Comments
|
I just realized that the key in question is a 1024 bit DSA key. Please refrain from using it, as DSA is broken. As is the signatures can (but should not) be used by downstreams to verify the authenticity of releases. |
archlinux-github
pushed a commit
to archlinux/svntogit-community
that referenced
this issue
Sep 2, 2020
Remove unused validpgpkeys (the mentioned key was DSA 1024bit anyways - JonnyJD/python-discid#50). Run tests in check() using pytest to be more future proof and report issues upstream. Skip build in package and install docs. Update maintainer info. git-svn-id: file:///srv/repos/svn-community/svn@696981 9fca08f4-af9d-4005-b8df-a31f2cc04f65
archlinux-github
pushed a commit
to archlinux/svntogit-community
that referenced
this issue
Sep 2, 2020
Remove unused validpgpkeys (the mentioned key was DSA 1024bit anyways - JonnyJD/python-discid#50). Run tests in check() using pytest to be more future proof and report issues upstream. Skip build in package and install docs. Update maintainer info. git-svn-id: file:///srv/repos/svn-community/svn@696981 9fca08f4-af9d-4005-b8df-a31f2cc04f65
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Hi @JonnyJD!
I'm currently packaging python-discid for Arch Linux. Could you please add the public key for
68304838CC686607to your account so that the tags show up as verified? Thanks! :)The text was updated successfully, but these errors were encountered: