The old OpenPGP key used SHA-1 in the binding signature. SHA-1 will be rejected by newer implementations and policies.
Replace the key with a new one that uses SHA2-512 instead. Regenerate the signature. Add a generator script in case the key needs to be replaced in the future.
jrohel
commented
1 year ago
The old OpenPGP key used SHA-1 in the binding signature. SHA-1 will be rejected by newer implementations and policies.
Replace the key with a new one that uses SHA2-512 instead. Regenerate the signature. Add a generator script in case the key needs to be replaced in the future.