[Bug 2359878] New: Review Request: gpgverify - signature verifier for easy and safe scripting

Tue, 15 Apr 2025 13:42:45 -0700 

https://bugzilla.redhat.com/show_bug.cgi?id=2359878

            Bug ID: 2359878
           Summary: Review Request: gpgverify - signature verifier for
                    easy and safe scripting
           Product: Fedora
           Version: rawhide
          Hardware: All
                OS: Linux
            Status: NEW
         Component: Package Review
          Severity: medium
          Priority: medium
          Assignee: [email protected]
          Reporter: [email protected]
        QA Contact: [email protected]
                CC: [email protected]
  Target Milestone: ---
    Classification: Fedora



Spec URL: https://www.Rombobjörn.se/packages/gpgverify-2.1-1/gpgverify.spec
SRPM URL:
https://www.Rombobjörn.se/packages/gpgverify-2.1-1/gpgverify-2.1-1.fc43.src.rpm

Description:
GPGverify is a wrapper around GnuPG's gpgv. It verifies a file against an
OpenPGP signature and one or more keyrings. Rather than assuming manual use by
a knowledgeable user, GPGverify is designed to be easy to use safely in a
script. It avoids various unsafe ways of using gpgv that could make a script
vulnerable.

Fedora Account System Username: rombobeorn

The package above is for Fedora 43 and later. In Fedora 41 and 42 I'll use this
spec file:
https://www.Rombobjörn.se/packages/gpgverify-1-1/gpgverify.spec
This one is a metapackage that pulls in gnupg2. It will allow spec files to
require "gpgverify" in Fedora 41 and 42 too, so the Packaging Guidelines can be
updated without waiting a year.


-- 
You are receiving this mail because:
You are always notified about changes to this product and component
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2359878

Report this comment as SPAM: 
https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-spam&short_desc=Report%20of%20Bug%202359878%23c0

-- 
_______________________________________________
package-review mailing list -- [email protected]
To unsubscribe send an email to [email protected]
Fedora Code of Conduct: 
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: 
https://lists.fedoraproject.org/archives/list/[email protected]
Do not reply to spam, report it: 
https://pagure.io/fedora-infrastructure/new_issue

Reply via email to