Uploaded image for project: 'Singa'
  1. Singa
  2. SINGA-456

Adding more PGP Keys

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • None
    • None

    Description

      Currently the SINGA KEYS file has only one PGP key which is expiring this September (it needs to be updated). This means only one person can sign the releases. While other projects like CouchDB for example, have several keys in the KEYS file.

      It will be useful if every active Apache committer in the team create a PGP key and uploads the Public Key Primary Fingerprint to his account using Apache Account Utility. Then append the new key to the SINGA KEYS file.

      Furthermore, the keys themselves can be signed for more trust. SINGA team can exchange key signatures between them or organize a key signing party. This will help adding more SINGA committers into the Apache Web of Trust.

      I attach with this issue the KEYS file with my key appended at the end.

      Attachments

        1. KEYS
          16 kB
          Moaz Reyad

        Issue Links

          links to

          Web Link GitHub Pull Request #530

          Activity

            People

              Unassigned Unassigned
              moazreyad Moaz Reyad
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0h
                  0h
                  Logged:
                  Time Spent - 20m
                  20m