Hi, now that we are at the beginning of a new release cycle, it would probably a good moment to fix 560038: "please make validating signatures the default, if /usr/share/keyrings/debian-archive-keyring.gpg is available".
IOW: debootstrap doesn't check signatures on packages by default...
cheers,
Holger
signature.asc
Description: This is a digitally signed message part.
