[kdeconnect] GPG key used to sign releases?
Nicholas D Steeves
nsteeves at gmail.com
Sat Jun 2 15:36:37 UTC 2018
On Fri, Jun 01, 2018 at 10:53:44AM +0200, Albert Vaca wrote:
> On Thu, May 31, 2018 at 9:02 PM Nicholas D Steeves <[2]nsteeves at gmail.com>
> wrote:
>
> Dear Albert,
>
> Thank you for your work on kdeconnect, it really is a "killer app"! I
> noticed that Debian (and all derivatives) are not verifying the gpg
> signature provided with the tarball:
>
[...]
> Hi Nicholas,
> Find attached the gpg key used to sign the tarballs. I've also uploaded it
> to the Ubuntu key server:
> [1]https://keyserver.ubuntu.com/pks/lookup?op=vindex&search=albertvaka%40gmail.com&fingerprint=on
> Thanks a lot for your time,
> Albert
>
Albert, thank you for the quick reply! Packaging for kdeconnect
≥1.3.1 in Debian (and derivatives, once they sync their repositories)
now verifies the tarball signature.
Maximiliano, thank you for reviewing and uploading the package!
Cheers,
Nicholas
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <http://mail.kde.org/pipermail/kdeconnect/attachments/20180602/90f63d37/attachment.sig>
More information about the KDEConnect
mailing list