Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Supported signed releases #52

Open
brarcher opened this issue Jun 19, 2016 · 1 comment
Open

Supported signed releases #52

brarcher opened this issue Jun 19, 2016 · 1 comment

Comments

@brarcher
Copy link
Contributor

Produce signed releases (as supported by GitHub) and attach the resulting asc file to releases such that users and package maintainer can verify a package's origin.
@brarcher brarcher mentioned this issue Jun 19, 2016
Closed
@lundmar
Copy link

lundmar commented Jun 19, 2016
edited
Loading

I've recently added support for signing releases of tio (http://tio.github.io) as part of the process of getting it into Debian. Along the way I've found the following quick instructions helpful:

https://keyring.debian.org/creating-key.html
https://help.github.com/articles/telling-git-about-your-gpg-key/
https://wiki.debian.org/Creating%20signed%20GitHub%20releases

Needless to say, it is important to upload your public key. I'm told the sks key servers are the preferred trusted servers.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@lundmar @brarcher