Skip to content
Snippets Groups Projects
Levente Polyak's avatar
closed merge request !1 "Update package to 6.18 and update PGP key" at Arch Linux / Packaging / Packages / clamtk
Levente Polyak's avatar
commented on merge request !1 "Update package to 6.18 and update PGP key" at Arch Linux / Packaging / Packages / clamtk

sorry John, I forgot about your MR and commited the update in the meantime. Thank you very much for your contribution.

Levente Polyak's avatar
pushed new tag 6.18-1 at Arch Linux / Packaging / Packages / clamtk
Levente Polyak's avatar
pushed to branch main at Arch Linux / Packaging / Packages / clamtk
Levente Polyak's avatar
commented on merge request !1 "Update package to 6.18 and update PGP key" at Arch Linux / Packaging / Packages / clamtk

Thank you for the link, however that is not a cryptographic chain of trust. In a short, when we opt-in for signed upstream sources we need to make ...

John's avatar
commented on merge request !1 "Update package to 6.18 and update PGP key" at Arch Linux / Packaging / Packages / clamtk

Here's some resources on that:...

Levente Polyak's avatar
commented on merge request !1 "Update package to 6.18 and update PGP key" at Arch Linux / Packaging / Packages / clamtk

we still need to figure out a cryptographic chain of trust here

John's avatar
commented on merge request !1 "Update package to 6.18 and update PGP key" at Arch Linux / Packaging / Packages / clamtk

Doing that with MD5 is not a bad idea, since they also provide those

Levente Polyak's avatar
commented on merge request !1 "Update package to 6.18 and update PGP key" at Arch Linux / Packaging / Packages / clamtk

That sounds reasonable, can you please put a comment with the link above the hashsums? You can also use dual-hashing by providing both, the old as ...

John's avatar
commented on merge request !1 "Update package to 6.18 and update PGP key" at Arch Linux / Packaging / Packages / clamtk

I changed the algorithm because the package provider provides sha256sums on their Github and Gitlab but not sha512sums...

Levente Polyak's avatar
commented on merge request !1 "Update package to 6.18 and update PGP key" at Arch Linux / Packaging / Packages / clamtk

please do not change the hash algorithm

Levente Polyak's avatar
commented on merge request !1 "Update package to 6.18 and update PGP key" at Arch Linux / Packaging / Packages / clamtk

Hi @antiapple4life , can you show the chain of trust between the new and old key?

John's avatar
opened merge request !1 "Update package to 6.18 and update PGP key" at Arch Linux / Packaging / Packages / clamtk
Levente Polyak's avatar
pushed new 16 tags at Arch Linux / Packaging / Packages / clamtk
Levente Polyak's avatar
pushed new branch main at Arch Linux / Packaging / Packages / clamtk
Levente Polyak's avatar
created project Arch Linux / Packaging / Packages / clamtk