Sign the images (!176) · Merge requests · Arch Linux / arch-boxes

Kristian Klausen requested to merge sign into master May 29, 2022

It is unlikely a "signing enclave"[1] will be implemented in the short term, and rather than wait forever, we can sign with a GPG key until a better solution present itself. The GPG master-key is stored in the infrastructure repository[2].

[1] infrastructure#280 [2] infrastructure!579 (merged)

Fix #132 (closed)

Admin message

Sign the images

Merge request reports