1 Commits

Author SHA1 Message Date
Jeremy Stanley
468161cbce Document release artifact signing
Provide some explanatory prose about handling of OpenPGP signatures
for Git tags and similar release artifacts. Also provide a copy of
the corresponding public keys, for improved provenance. New keys
should be added each cycle as they're rotated into use.

Change-Id: I083bc8acf8d95e938afb5446d786eedf4fc43751
2016-12-09 19:03:51 +00:00