Re: [Tails-l10n] OpenPGP-signed pull requests?

This message is part of the following thread:
M+++++\the complete thread tree sorted by date
MMMMMMMintrigeri at <-
...MM.Mdrebs at ->
Delete this message

Reply to this message
Author: mercedes508
Date:  
To: tails-l10n
Subject: Re: [Tails-l10n] OpenPGP-signed pull requests?
Hi,

> after merging one more translation pull request, just by trusting the
> From header, fingers crossed that if an attacker had been spoofing
> this header to game us, then the person being spoofed would notice
> before any user is harmed... I'm wondering:
>
> Would it sound crazy, too painful, or what, if we required l10n pull
> requests to be OpenPGP-signed?

It sounds doable to me.

Cheers.

This message was posted to the following mailing lists:
tails-l10n
Mailing List Info | Nearby Messages		<-Re: [Tails-l10n] OpenPGP-signed pull requests?Re: [Tails-l10n] OpenPGP-signed pull requests?->
lists.autistici.org administrated by postmasterLurker (version 2.3)