We need to figure out a proper release process, so that we sign Ruby Gems and produce GPG signed checksums once the Ruby Gem has been released. This is for security and proper dependency tracking.
In the past it was just me working on it, so I used my own personal keys, but now that you are also releasing Ruby Gems, we need to probably generate a set of keys to be used by the project.
Hi @stanhu,
We need to figure out a proper release process, so that we sign Ruby Gems and produce GPG signed checksums once the Ruby Gem has been released. This is for security and proper dependency tracking.
In the past it was just me working on it, so I used my own personal keys, but now that you are also releasing Ruby Gems, we need to probably generate a set of keys to be used by the project.
I hope you don't mind.
Krzysztof