Bug#727096: uscan: store signature for upstream tarball in debian/
Paul Wise
pabs at debian.org
Tue Apr 12 16:20:50 UTC 2016
On Tue, 2016-04-12 at 12:06 -0400, Daniel Kahn Gillmor wrote:
> .asc files can already contain multiple signatures -- i guess i have no
> problem with splitting them out if we want, as long as the tooling for
> doing so is easy for people to use.
Having separate keys allows the addition of multiple sigs to be
independent. I'm not sure you can even add a new signature to an
existing signature file? In any case you are modifying the .asc file
every time and modifying files in the Debian archive is not allowed.
--
bye,
pabs
https://wiki.debian.org/PaulWise
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: This is a digitally signed message part
URL: <http://lists.alioth.debian.org/pipermail/devscripts-devel/attachments/20160413/27947add/attachment.sig>
More information about the devscripts-devel
mailing list