[2.x] Switch to Artifact-based PGP Whitelist + Upgrade PGP Verify

WrenSecurity / wrensec-parent

Parent POM for Maven based Wren Security projects.

http://wrensecurity.org

0 stars 7 forks source link

[2.x] Switch to Artifact-based PGP Whitelist + Upgrade PGP Verify #14

Closed Kortanul closed 6 years ago

Kortanul commented 6 years ago

This eliminates wrensec-home / the Wren website as a single point of failure for PGP verification. It also makes builds more resilient to intermittent PGP key server failures.

Also see: https://github.com/WrenSecurity/wrensec-pgp-whitelist/pull/1

Kortanul commented 6 years ago

@siepkes I'll take a look.

Kortanul commented 6 years ago

@siepkes Yes, that's correct.