On Tue, 2016-04-12 at 09:19 +0200, Ansgar Burchardt wrote: > For a given upstream tarball the upstream signature should go in a file > with the extension `.asc`. For example, for > dune-common_2.4.1.orig.tar.xz > the signature should be in > dune-common_2.4.1.orig.tar.xz.asc
Is there any possibility to extend this to include the fingerprint, thus allowing for multiple signatures; for example one from upstream and one from the Debian maintainer? Having multiple detached signatures is also planned for the reproducible builds .buildinfo files IIRC. -- bye, pabs https://wiki.debian.org/PaulWise
signature.asc
Description: This is a digitally signed message part
_______________________________________________ devscripts-devel mailing list [email protected] http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/devscripts-devel
