Neal H. Walfield

FYI, [rustnl](https://2024.rustnl.org/) is May 8th, which might impact the number of participants.

This is our policy on security vulnerabilities in [`Sequoia`](https://gitlab.com/sequoia-pgp/sequoia/-/blob/main/doc/security-vulnerabilities.md?ref_type=heads). We've shared it with a number of stakeholders, and they seem to like it. The short version is that when we...

> Is there any guide on how to update my key to use SHA-256? For what it is worth, you could use `gpg --export-secret-key FINGERPRINT | sq cert lint --fix...

> For example change its expiration date back and forth: https://www.redhat.com/en/blog/updating-gpg-keys-for-fedora-and-rhel (scroll to "GnuPG 2.x" section) @marmarek: That blog post has a number of errors. I reported them to the...

`sequoia-openpgp` supports several different cryptographic backends (specifically: nettle, openssl, botan v2, botan v3, rust-crypto, and Windows CNG). To use `sequoia-openpgp`, *exactly* one crypto backend needs to be selected. Unfortunately, there...

Thanks for following up. As is customary around where I live, I took the last few days off. > Might you be open to contributing PRs for this? At this...

> Would love to compare notes! Let's continue the discussion via email: firstname@lastname dot org. > I'm not eligible for Sovereign Tech Fund funding since I'm not based in Germany,...

I've encountered this problem as well. For background: In [Sequoia](https://sequoia-pgp.org), we have an [RFC 2822 NameAddr parser](https://docs.sequoia-pgp.org/sequoia_rfc2822/index.html). Sometimes OpenPGP User IDs contain a URI in place of an email address....

> OK, put #3292 underneath, adjusted the message and the name of `rpmPubkeyFingerprint` and make the test cases pass. > > For now I have not remove the key IDs...

> Maybe it's a good idea to also return the pubkey version with the fingerprint if you're adding a new API function. How do you imagine rpm or an application...