Re: Is including GPG keys in an AUR package for verifying sources a good idea?
Hi there, the rest of your email got cut off. We only see "A malicious". -- Cheers, Aᴀʀᴏɴ OpenPGP_0x4E85967FC7C436BE.asc Description: OpenPGP public key OpenPGP_signature.asc Description: OpenPGP digital signature
Re: Is including GPG keys in an AUR package for verifying sources a good idea?
Re: Is including GPG keys in an AUR package for verifying sources a good idea? – Hello, Good reasoning and decision regarding not removing signatures checking. As for attaching keys, my opinion on that is: you may. My thinking here is as follows. Signatures establish a secure channel b
