github.com/vipernet-xyz/tendermint-core@v0.32.0/scripts/gitian-keys/README.md

github.com/vipernet-xyz/tendermint-core@v0.32.0/scripts/gitian-keys/README.md (about)

     1  ## PGP keys of Gitian builders and Tendermint Developers
     2  
     3  The file `keys.txt` contains fingerprints of the public keys of Gitian builders
     4  and active developers.
     5  
     6  The associated keys are mainly used to sign git commits or the build results
     7  of Gitian builds.
     8  
     9  The most recent version of each pgp key can be found on most PGP key servers.
    10  
    11  Fetch the latest version from the key server to see if any key was revoked in
    12  the meantime.
    13  To fetch the latest version of all pgp keys in your gpg homedir,
    14  
    15  ```sh
    16  gpg --refresh-keys
    17  ```
    18  
    19  To fetch keys of Gitian builders and active core developers, feed the list of
    20  fingerprints of the primary keys into gpg:
    21  
    22  ```sh
    23  while read fingerprint keyholder_name; \
    24  do gpg --keyserver hkp://subset.pool.sks-keyservers.net \
    25  --recv-keys ${fingerprint}; done < ./keys.txt
    26  ```
    27  
    28  Add your key to the list if you are a Tendermint core developer or you have
    29  provided Gitian signatures for two major or minor releases of Tendermint.