signed releases

Question

signed releases

Closed this issue 3 years ago · 2 comments

Currently neither the git tags nor the release tarballs are PGP signed. It would be great if you could sign the tags and/or provide signed tarball files for downstream packagers. The current key is also expired.

hyder365 commented 3 years ago

Ping?

Answer 1 · 2021-09-18T12:15:01.000Z

First signed release: https://github.com/besser82/libxcrypt/releases/tag/v4.4.26