Investigate changes in CDRIVER-5994: Sign Release Tags with the C Driver Release Signing Key

XMLWordPrintableJSON

    • Type: Task
    • Resolution: Works as Designed
    • Priority: Unknown
    • None
    • Affects Version/s: None
    • Component/s: None
    • None
    • None
    • Hide

      1. What would you like to communicate to the user about this feature?
      2. Would you like the user to see examples of the syntax and/or executable code and its output?
      3. Which versions of the driver/connector does this apply to?

      Show
      1. What would you like to communicate to the user about this feature? 2. Would you like the user to see examples of the syntax and/or executable code and its output? 3. Which versions of the driver/connector does this apply to?
    • None
    • None
    • None
    • None
    • None
    • None

      The release.py script currently signs using the current developer's git identity and signing key. We may want to switch to using the dedicated Release Signing Key used to create a signature file for the release tarball instead. This would improve the user experience for those validating the release tag signature, as they can (re)use the dedicated Release Signing Key provided by https://pgp.mongodb.com/, rather than needing to find and import individual developers' public keys.

            Assignee:
            Unassigned
            Reporter:
            Esha Bhargava
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: