On Wed, 2016-03-30 at 15:57 +0000, Ralf Senderek wrote: > It cannot be automated, because it relies on using the correct public > key, which always has to be checked manually by the packager > (including the use of gpg).
I mean, after the packager manually configures signature checking the first time, then it can and should work automatically for package updates until the public key changes. Michael -- devel mailing list devel@lists.fedoraproject.org http://lists.fedoraproject.org/admin/lists/devel@lists.fedoraproject.org