H(o)i Marcel, On 29 December 2024 13:04:59 UTC, Marcel van der Boom <[email protected]> wrote: >- are subkeys supported? anything special needed?
AIR Guix does not (yet?) resolve subkeys to an authorised primary. This means that each signing subkey used must be explicitly authorised. If you look at upstream Guix's .guix-authorizations, you'll see a good few ';; Primary: XXXX…' comments above certains keys, including mine. >- do i need to pull the keyring in manually over time of does the machinery >take care of this? If you mean in a git checkout: you must manually fetch any updates to the keyring branch before rebasing + pushing your changes. There is no magic. If you mean 'guix pull', even from a file:// URL: guix clones and updates the entire repository, not only 'master'. No additional action is needed to fetch the latest upstream keyring. Kind regards, T G-R Sent on the go. Excuse or enjoy my brevity.
