FS#52628 - [yubikey-personalization] consider using upstream signatures
Attached to Project:
Community Packages
Opened by Levente Polyak (anthraxx) - Thursday, 19 January 2017, 00:39 GMT
Last edited by Christian Hesse (eworm) - Friday, 27 January 2017, 14:40 GMT
Opened by Levente Polyak (anthraxx) - Thursday, 19 January 2017, 00:39 GMT
Last edited by Christian Hesse (eworm) - Friday, 27 January 2017, 14:40 GMT
|
Details
Hey ho :)
Would be cool if you could maybe switch the package to the tarballs, as upstream is providing signature files for those. This is like the best possible scenario and yubikey is about managing your gpg private key, so a bit of extra security would be preferable here as it currently uses plain git:// and a named tag. :p https://developers.yubico.com/yubikey-personalization/Releases/ https://developers.yubico.com/yubikey-personalization/Releases/ykpers-1.17.3.tar.gz https://developers.yubico.com/yubikey-personalization/Releases/ykpers-1.17.3.tar.gz.sig Thanks in advance and have a nice evening :] cheers, anthraxx |
This task depends upon
Closed by Christian Hesse (eworm)
Friday, 27 January 2017, 14:40 GMT
Reason for closing: Implemented
Additional comments about closing: yubikey-personalization 1.18.0-1
Friday, 27 January 2017, 14:40 GMT
Reason for closing: Implemented
Additional comments about closing: yubikey-personalization 1.18.0-1