Add option to use system GPG instead of Go library for PQC key support
Opened this issue · 0 comments
KiGamji commented
Feature Description
Currently Gitea uses ProtonMail/go-crypto which doesn't support post-quantum algorithms like Kyber/ML-KEM.
Proposal: Add configuration option to use system gpg binary for all operations:
[repository.signing]
USE_SYSTEM_GPG = true
GPG_PROGRAM = /usr/bin/gpgThis would allow using GPG 2.5+ with full PQC support.
Screenshots
No response