Sign rpm packages

Open duritong opened this issue 7 years ago • 4 comments

Would be awesome if you would also sign the RPM packages with your key: https://blog.packagecloud.io/eng/2014/11/24/howto-gpg-sign-verify-rpm-packages-yum-repositories/

Oct 18 '18 20:10 duritong

You may send a PR: https://github.com/wp-cli/wp-cli-bundle/blob/master/utils/wp-cli-updaterpm.sh

Oct 18 '18 20:10 szepeviktor

Not easily done right now as our automated systems don't yet include a secure why of providing a key for signing.

Related: https://github.com/wp-cli/wp-cli/issues/4659

Oct 23 '18 17:10 schlessera

automated systems don't yet include a secure way

Travis CI has secrets.

I think we use it here: https://github.com/wp-cli/wp-cli-bundle/blob/master/ci/deploy.sh#L24

Oct 23 '18 18:10 szepeviktor

Has this issue been solved yet?

Mar 11 '24 09:03 bf-aagero