Release GPG keyring
25 views
Skip to first unread message
Adam Majer
Nov 16, 2017, 4:40:53 PM11/16/17
to nodejs
Hello,
Where can I find the keyring of authorized persons that can release (ie. sign) new versions of NodeJS? More specifically I'm looking for the keyring, or a list of authorized key fingerprints, I can use to verify the signed hash files. Of course I can download these signatures from the public keyservers, but that kind of defeats the purpose of actually having those files signed since anyone can sign any file with their own generated key.
Thanks,
Adam
Where can I find the keyring of authorized persons that can release (ie. sign) new versions of NodeJS? More specifically I'm looking for the keyring, or a list of authorized key fingerprints, I can use to verify the signed hash files. Of course I can download these signatures from the public keyservers, but that kind of defeats the purpose of actually having those files signed since anyone can sign any file with their own generated key.
Thanks,
Adam
Reply all
Reply to author
Forward
0 new messages