mirror of https://github.com/comit-network/xmr-btc-swap.git synced 2025-12-16 17:14:13 -05:00

History

einliterflasche 3ce8e360c5 add einliterflasche gpg key		2025-11-05 15:52:22 +01:00
..
binarybaron.asc	docs: add binarybaron.asc	2024-07-23 14:12:44 +02:00
binarybaron_and_einliterflasche.asc	docs: add signature verification instructions	2025-10-07 15:32:56 +02:00
delta1.asc
einliterflasche.asc	add einliterflasche gpg key	2025-11-05 15:52:22 +01:00
readme.md	dprint fmt	2025-10-11 15:27:50 +02:00

readme.md

GPG Signature Verification

This directory contains public GPG keys for verifying release binary signatures.

Verifying Release Binaries

Each release includes .asc signature files alongside the binaries.

1. Import the signing key

# Download the key from GitHub
wget https://raw.githubusercontent.com/eigenwallet/core/master/utils/gpg_keys/binarybaron_and_einliterflasche.asc

# Import it
gpg --import binarybaron_and_einliterflasche.asc

2. Download and verify the signature

# Download both the binary archive and its signature
wget https://github.com/eigenwallet/core/releases/download/3.0.7/asb_3.0.7_Linux_x86_64.tar
wget https://github.com/eigenwallet/core/releases/download/3.0.7/asb_3.0.7_Linux_x86_64.tar.asc

# Verify the signature
gpg --verify asb_3.0.7_Linux_x86_64.tar.asc asb_3.0.7_Linux_x86_64.tar

Successful verification shows:

gpg: Signature made [date]
gpg: Good signature from "..."

The warning This key is not certified with a trusted signature is expected unless you've explicitly trusted the key.