[Pkg-zsh-devel] Expired keys in d/upstream/signing-key.asc
Daniel Shahaf
d.s at daniel.shahaf.name
Mon Jul 13 16:51:50 BST 2020
Daniel Shahaf wrote on Sun, 12 Jul 2020 23:32 +0000:
> Axel Beckert wrote on Sun, Jul 12, 2020 at 22:45:48 +0200:
> > > There doesn't seem to be a lintian check for expired keys in that file,
>
> [There is https://lintian.debian.org/tags/public-upstream-key-unusable.html,
> but it didn't fire when I built z-sy-h with today's sid.]
>
> > > nor a wishlist bug for such a check.
> >
> > But I think there should be one, especially if that's not yet
> > automated (or automatable) yet.
> >
>
> Okay. If I don't hear otherwise, I'll file a wishlist bug.
> Should I Cc some person/group as maintainers of the d/u/signing-key.asc
> spec? -qa@? devscripts at packages.d.o (maintainers of uscan(1))?
[...]
> (We might want to continue this discussion on the lintian bug, once it's
> created. I'll X-D-Cc you.)
Created #946971. Axel, you're Cc'd.
The questions about automating the refresh-keys of signing-key.asc are
not covered by that bug.
Cheers,
Daniel
P.S. Turns out that my key in the zsh package expired earlier this
month, but my key in the z-sy-h package expired in 2018. Oops indeed.
More information about the Pkg-zsh-devel
mailing list