Current 3mdeb-secpack master signed with expired key #205
Description
$ git show --show-signature -s origin/master
commit a8dd882d0e361040b9f1e1a6c3ef6da935fac722 (HEAD -> master, origin/master, origin/HEAD)
gpg: Signature made Thu Sep 18 19:06:09 2025 CEST
gpg: using RSA key A712814EC730D0D554F3F7A44084CE16676BD816
gpg: Good signature from "Daniil Klimuk <daniil.klimuk@3mdeb.com>" [expired]
gpg: Note: This key has expired!
Primary key fingerprint: A712 814E C730 D0D5 54F3 F7A4 4084 CE16 676B D816
Author: Daniil Klimuk <daniil.klimuk@3mdeb.com>
Date: Thu Sep 18 19:05:55 2025 +0200
dasharo: dasharo-tools-suite-open-source-software-release-2.7.x: add key
Signed-off-by: Daniil Klimuk <daniil.klimuk@3mdeb.com>
and
$ gpg keys/employees-keys/daniil-klimuk-signed.asc
gpg: WARNING: no command supplied. Trying to guess what you mean ...
pub rsa4096 2023-06-12 [SC] [expires: 2026-06-11]
A712814EC730D0D554F3F7A44084CE16676BD816
uid Daniil Klimuk <daniil.klimuk@3mdeb.com>
sub rsa4096 2023-06-12 [E] [expired: 2025-06-11]
Since the signature was made yesterday, I guess extended key does exist somewhere, it just isn't updated in the repo (and/or on keyservers).
Kinda related to #130