jfrog-cli icon indicating copy to clipboard operation
jfrog-cli copied to clipboard
verified publisher icon jfrog

Signature by key A3D085F542F740BBD7E3A2846B219DCCD7639232 uses weak algorithm (dsa1024)

Open althaser opened this issue 1 year ago • 5 comments

Describe the bug

Currently grabbing jfrog-cli from a deb package from: https://jfrog.com/getcli/ it uses xenial version instead of latest LTS version (jammy today). Please support for jammy version.

While performing apt-get update I face the following warning message: W: https://releases.jfrog.io/artifactory/jfrog-debs/dists/focal/InRelease: Signature by key A3D085F542F740BBD7E3A2846B219DCCD7639232 uses weak algorithm (dsa1024)

thank you

Current behavior

W: https://releases.jfrog.io/artifactory/jfrog-debs/dists/focal/InRelease: Signature by key A3D085F542F740BBD7E3A2846B219DCCD7639232 uses weak algorithm (dsa1024)

Reproduction steps

No response

Expected behavior

No response

JFrog CLI version

jf version 2.55.0

Operating system type and version

Ubuntu22

JFrog Artifactory version

No response

JFrog Xray version

No response

althaser avatar Apr 15 '24 14:04 althaser

Now we´re already at "noble" with Ubuntu 24.04

Scifire avatar May 15 '24 12:05 Scifire

@Scifire where https://releases.jfrog.io/artifactory/jfrog-debs/dists/ ?

althaser avatar May 15 '24 17:05 althaser

@althaser jfrog didn't released anything new, but the new Ubuntu version "noble" is now officially released.

Scifire avatar May 15 '24 18:05 Scifire

Affects me too! ... Still the signature is done with a weak algo! .... and still the old way to add the repo to apt!

ephraim avatar Jun 19 '24 07:06 ephraim

Also effects me

KeithMnemonic avatar Aug 21 '24 12:08 KeithMnemonic