securedrop icon indicating copy to clipboard operation
securedrop copied to clipboard

Published 20 hours ago verified publisher icon freedomofpress

Phase out old signing key in `securedrop-admin`

Open eloquence opened this issue 1 year ago • 1 comments

securedrop-admin currently still trusts the old signing key for releases. It's been more than a year since the full key rotation (not to be confused with the recent expiry bump), so I think this can be safely phased out:

https://github.com/freedomofpress/securedrop/blob/2f2db872f60bbc9024e0b35b8ebcdc2f5695acb2/admin/securedrop_admin/init.py#L49-L55

eloquence avatar Aug 04 '22 16:08 eloquence

Yup, tis an easy fix/test, adding to 2.5.0

zenmonkeykstop avatar Aug 04 '22 17:08 zenmonkeykstop