Verified Commit bc007ca5 authored by David Runge's avatar David Runge
Browse files

Add releases section with PGP information

README.rst:
Add a "Releases" section that specifies who is creating releases and which PGP key ID is used to sign tags.
Additionally, information about how to retrieve the relevant public key and how to verify a tag in the repository is
added.

Fixes #114
parent d178183c
Pipeline #6004 passed with stages
in 39 minutes and 3 seconds
......@@ -148,6 +148,26 @@ Discussion around archiso takes place on the `arch-releng mailing list
All past and present authors of archiso are listed in `AUTHORS <AUTHORS.rst>`_.
Releases
========
`Releases of archiso <https://gitlab.archlinux.org/archlinux/archiso/-/tags>`_ are created by its current maintainer
`David Runge <https://gitlab.archlinux.org/dvzrv>`_. Tags are signed using the PGP key with the ID
`C7E7849466FE2358343588377258734B41C31549`.
To verify a tag, first import the relevant PGP key:
.. code:: bash
gpg --auto-key-locate wkd --search-keys dvzrv@archlinux.org
Afterwards a tag can be verified from a clone of this repository:
.. code:: bash
git verify-tag <tag>
License
=======
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment