Hi, I think this proposal to use "signed-by" is a good idea.
But if you ever make such support, please consider to use deb822 style file instead of one-line old style. This way, we can avoid creating a source list configuration file with insanely long line can be avoided. (I don't know which key is the best choice though.) My local /etc/apt/sources.list.d/debian.sources types: deb deb-src uris: http://deb.debian.org/debian/ suites: bookworm components: main non-free-firmware contrib non-free signed-by: /usr/share/keyrings/debian-archive-bookworm-automatic.gpg #Signed-By: /usr/share/keyrings/debian-archive-bookworm-stable.gpg #Signed-By: /usr/share/keyrings/debian-archive-keyring.gpg types: deb deb-src uris: http://security.debian.org/debian-security/ suites: bookworm-security components: main non-free-firmware contrib non-free signed-by: /usr/share/keyrings/debian-archive-bookworm-security-automatic.gpg #Signed-By: /usr/share/keyrings/debian-archive-keyring.gpg Osamu
