This is the mail archive of the
gdb@sourceware.org
mailing list for the GDB project.
Re: Signed release tags
- From: Joel Brobecker <brobecker at adacore dot com>
- To: Andreas Schwab <schwab at suse dot de>
- Cc: gdb at sourceware dot org
- Date: Thu, 6 Feb 2014 13:39:20 +0400
- Subject: Re: Signed release tags
- Authentication-results: sourceware.org; auth=none
- References: <mvmmwi463wf dot fsf at hawking dot suse dot de>
> IMHO it would be nice to have the release tag in git be GPG-signed.
> WDYT?
I suppose I could do it if has any benefit. I've never really worked
in an area where I felt that signing was really worth the trouble,
so I'm a little ignorant in that area.
I sign the release tarballs just because I have to. I've now added
my key to some keyring for people to be able to verify it. I guess
signing the tag will only make sure that I was the author of the
tag?
Anyways, no objection from me. I'll just follow whatever people
think is best.
--
Joel