Open hypirion opened 11 years ago
A result of this is that we're unable to detect keychains on systems. However, it's not hard to keep the current method as an option in the project map, and fall back to internal signing when we're unable to shell out/find GPG.
It looks like we might be able to use this: https://github.com/greglook/clj-pgp
Shelling out for calling GPG leads to certain complications. In particular, this method does not work at all on Windows, and generates issues when the IO has been rebound, see #1080.
If it's possible to use a Clojure wrapper around a Java cryptography library, such as BouncyCastle, then that would be preferable.