-
Notifications
You must be signed in to change notification settings - Fork 290
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Sign release tags #2138
Labels
Comments
inglor
added
status/triage
Issue or PR that requires contributor attention.
type/enhancement
Issue that requests a new feature or improvement.
labels
Apr 19, 2024
jjbustamante
added
status/requires-rfc
Issue or PR that requires an RFC to be filed.
and removed
status/triage
Issue or PR that requires contributor attention.
labels
Apr 19, 2024
This is probably similar to or duplicating #268 |
I think you misunderstood the request. This is about signing with PGP key the release tag of this repository. No new feature request for pack itself :) just couldn't choose a category other than feature. |
jjbustamante
added
status/ready
Issue ready to be worked on.
type/chore
Issue that requests non-user facing changes.
and removed
status/requires-rfc
Issue or PR that requires an RFC to be filed.
type/enhancement
Issue that requests a new feature or improvement.
labels
Apr 22, 2024
Yes - I'll move discussion there. |
As per suggestion on #934 (comment) re-opening this. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Labels
Description
Consider Signing tags of releases
Proposed solution
As the package maintainer of Arch Linux I would appreciate if you could help maintaining the chain of trust with PGP signatures on commits/tags. This can be handled from the Arch Linux build tools and can automatically validate PGP public key of the author of the commit/tag.
Tasks:
Describe alternatives you've considered
N/A
Additional context
N/A
The text was updated successfully, but these errors were encountered: