search

Lookyloo / pysecuritytxt

Tries to get and parse .well-known/security.txt from a domain
BSD 3-Clause "New" or "Revised" License
8 stars 2 forks source link

bug: parsed data should include PGP signature #16

Open berkas1 opened 1 year ago

berkas1 commented 1 year ago

Problem: --parse ignores PGP signature

Expected results: it would be nice if parsed data would also include PGP signature if the target security.txt file is signed.

Steps to preproduce: 

berkas1@berkas1-wt:~  $ pysecuritytxt --parse securitytxt.cz | jq .
{
  "acknowledgments": "https://securitytxt.cz/kdo-pouziva-security-txt",
  "contact": "mailto:mail@securitytxt.cz",
  "expires": "2025-05-03T22:00:00.000Z",
  "prefered-languages": [
    "en",
    "cz"
  ]
}

Thank you for considering this feature!

Rafiot commented 1 year ago

Sure, I'll look at it. Is there any chance you know which GPG python library is (vaguely) up-to-date and somewhat maintained now a days?

I have memories it was a nightmare and the canonical one was changing every few months a few years ago.