AntonKueltz
commented
3 years ago Yes, this was an oversight on my part (switched to a new dev machine and didn’t set up new keys for pypi publishing). The next release will include the corresponding signatures again. Let me know if there’s anything in 2.2.2 that you need that warrants an immediate new release with those files.
Hi, I maintain
fastecdsaon the AUR for Arch Linux. The package fetches a signature file that verifies the source tarball from PyPI.However, with version 2.2.2, both the tag and the tarball are missing a signature and/or signature file, respectively. Could you please make an effort to sign your tags or, at the very least, ensure your tarballs have a corresponding signature file on PyPI?
Thanks!