Conversation

It should be possible to rotate keys and provide new signatures replacing the old ones made with the key that's being retired. Git notes mean you can just not fetch all the legacy signatures, etc. It's pretty gross having PGP bloat hard-wired into each commit / tag object...
1
1
Show replies