Hi! On Wed, 2025-12-17 at 12:07:55 +0200, Martin-Éric Racine wrote: > However, no longer checking the user's own keyring really is a > regression. This needs to be fixed. IMHO, a good implementation > would be to first check the global keyrings (which it already does) > then check the user's own keyring as a last resort (which was removed > for no good reason).
I explained the reasons in my first reply to this report. The GnuPG specific trustedkeys.kbx or trustedkeys.gpg keyrings are being deprecated, as they are implementation specific, potentially using a non-standard keyring format not understood by anything else. If you want to use user specific keyrings, now you can use the --signer-certs option to specify those. Thanks, Guillem
