[Rpm-maint] [rpm-software-management/rpm] Distinguish between trusted and untrusted signatures and keys. (PR #1993)
Demi Marie Obenour
notifications at github.com
Fri Apr 8 08:14:31 UTC 2022
> Demi, development of the OpenPGP parser is frozen now, remember?
Good point. Does this also apply to the keyring code and similar? My understanding is that more work is needed there, such as to using fingerprints instead of key IDs. Also, I think the tests that this PR includes are valuable; they should pass for Sequoia-based RPM as well.
In any case, I could see this PR being useful for downstreams that can’t use Rust or need something they can backport.
--
Reply to this email directly or view it on GitHub:
https://github.com/rpm-software-management/rpm/pull/1993#issuecomment-1092582771
You are receiving this because you are subscribed to this thread.
Message ID: <rpm-software-management/rpm/pull/1993/c1092582771 at github.com>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.rpm.org/pipermail/rpm-maint/attachments/20220408/74f8472f/attachment.html>
More information about the Rpm-maint
mailing list