Community Packages

Please read this before reporting a bug:
https://wiki.archlinux.org/title/Bug_reporting_guidelines

Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.

REPEAT: Do NOT report bugs for outdated packages!
Tasklist

FS#70891 - python-xlib signed with corrupted keys

Attached to Project: Community Packages
Opened by sttwn (sttwn) - Saturday, 15 May 2021, 21:06 GMT
Last edited by Antonio Rojas (arojas) - Saturday, 15 May 2021, 21:11 GMT
Task Type Bug Report
Category Packages
Status Closed
Assigned To No-one
Architecture All
Severity Low
Priority Normal
Reported Version
Due in Version Undecided
Due Date Undecided
Percent Complete 100%
Votes 0
Private No

Details

Description:
I'm unable to upgrade to python-xlib v0.30-1 because of issues with the PGP keys used by the package maintainer to sign the tar file. The exact error I get is that:

> error: python-xlib: signature from "Morten Linderud <morten@linderud.pw>" is marginal trust
:: File /var/cache/pacman/pkg/python-xlib-0.30-1-any.pkg.tar.zst is corrupted (invalid or corrupted package (PGP signature)).
Do you want to delete it? [Y/n]

Whichever option I choose, it fails in the following manner:

> error: failed to commit transaction (invalid or corrupted package)

Can't upgrade any packages rn; this update went out a bit less than forty five minutes ago.

Additional info:
* package version(s): v0.30-1

Steps to reproduce:
1. Try to install or upgrade python-xlib
This task depends upon

Closed by  Antonio Rojas (arojas)
Saturday, 15 May 2021, 21:11 GMT
Reason for closing:  Not a bug
Additional comments about closing:  Subscribe to arch-dev-public if you use [testing]
Comment by sttwn (sttwn) - Saturday, 15 May 2021, 21:09 GMT
Oh I apologise, I didn't scroll down all the way to see the 'This tasks depends upon' option. It depends on the package python-xlib, if a package is what it's asking for.

Loading...