Morten Linderud
Morten Linderud
Yo, I'm poking a bunch of people that is currently using this library to help provide feedback before I remove the old code. I assume people are relying on this...
We should just check for secring, and ask for it to be exported instead of doing the horrible hack we currently do. https://www.gnupg.org/faq/whats-new-in-2.1.html#nosecring
`gen` uses the filename (i think) to figure out where to stuff the signature. We should just get the filename and throw it into current directory.
https://gitlab.archlinux.org/archlinux/infrastructure/-/tree/master/roles/archbuild/files
- [x] NPM `electron-native-notify` - https://blog.npmjs.org/post/185397814280/plot-to-steal-cryptocurrency-foiled-by-the-npm - [ ] NPM `event-stream` https://medium.com/@hkparker/analysis-of-a-supply-chain-attack-2bd8fa8286ac - [x] Operation Shadowhammer - https://securelist.com/operation-shadowhammer-a-high-profile-supply-chain-attack/90380/ - [ ] Fedora Incident - https://lists.fedoraproject.org/pipermail/announce/2011-January/002911.html - [ ] Fedora Signing...
I'm struggling to picture the UX on how we should handle multiple keys. `ssh-agent` is not *really* made for key creating this way, so there needs to be a secondary...
https://github.com/C2SP/C2SP/pull/31
Currently `age-plugin-tpm` makes ephemeral NIST P256 key in software when the someone encrypt something with the recipient. There is probably(?) nothing stopping us from creating an ephemeral key inside the...