-
### Description
Consider Signing tags of releases
### Proposed solution
As the package maintainer of Arch Linux I would appreciate if you could help maintaining the chain of trust with PGP si…
-
crosstool-NG version: `1.26.0`
Hi, thanks for your work. just a minor thing (I omit the various build information because it is cross-version): on the[ website documentation](https://crosstool-ng.g…
-
I have installed and configured mailvelope, authorized the nextcloud domain and enabled the API. On one of my computers yesterday, I saw it working as expected, on the other, I see that incoming PGP …
-
[GHCup metadata][ghcup-metadata] 为每一个 YAML/JSON 文件都提供了相应的 PGP 签名文件。
[GHCup 的官方下载网站][ghcup] 在 tarball 所在的目录中也都提供了 `SHA256SUMS` 及 `SHA256SUMS.sig` 文件,如:
```
https://downloads.haskell.org/~ghcup/0.1…
-
We had an idea today, along the lines of #32, but for GPG keys instead of SSH keys. In particular, at a conference, I was asked to sign someone else's GPG public key. We wound using `wormhole send` to…
-
```
In order to decrypt pgp encrypted messages from the Android stock mail
application (which is binded to an exchange account using ActiveSync) it would
be very useful to have an option which allow…
-
```
In order to decrypt pgp encrypted messages from the Android stock mail
application (which is binded to an exchange account using ActiveSync) it would
be very useful to have an option which allow…
-
The key used for signing release tarballs has two RSA subkeys; the one that was used for signing the latest release has expired on 07/05/2017. The PGP signature therefore does not verify.
-
Hello,
I am using Gradle 7.4 and dependencycheck 7.1.1
The verification failed for the POM
```xml
…
-
```
One artifact failed verification: gradle-git-version-3.0.0.pom (com.palantir.gradle.gitversion:gradle-git-version:3.0.0) from repository gradle
This can indicate that a dependency has been compr…