Summary

Add pgp public key and refer to it in our security disclosure method

Review Request #860 — Created Aug. 3, 2021 and submitted Aug. 4, 2021, 1:53 a.m.

Information

Owner

sorvival

Repository

pidgin/nest

Branch

default

Bugs

NEST-46

Depends On

Commit

a67a7f977ebc

Reviewers

Groups

pidgin-www

People

Description

The idea behind this is to make sure people that choose to use email to let us
known about a potential security issue in Pidgin encrypt the content of the
emails using a set of pgp keys of trusted Pidgin developers. For now we only
have the pgp key of grim but more keys can easily be added later on.

At the same time, since Hugo does not currently have a built-in shortcode for
linking directly to static resources, I had to add a new shortcode for doing so

Testing Done

Ran dev-server.sh and made sure content looked as intended and links worked.

Issues

Description	From	Last Updated
Creating an issue in my own RR to emphasize on the need for grim to double check that the pgp …	sorvival	Aug. 3, 2021, 9 a.m.
I'd reword this to say something like If you choose this method and would like to encrypt the contents... I …	grim	Aug. 4, 2021, 1:53 a.m.

The issue has been resolved. Show all issues

Creating an issue in my own RR to emphasize on the need for grim to double check that the pgp key I'm including here is indeed the one you posted in Youtrack.

grim Aug. 3, 2021, 9 a.m.

I compared to gpg --export -a 40DE1DC7288FE3F50AB938C548F66AFFD9BDB729 and it does look correct.

hugo/content/about/security/_index.md (Diff revision 1)

The issue has been resolved. Show all issues

I'd reword this to say something like If you choose this method and would like to encrypt the contents... I don't think we need to force people to setup gpg if they don't already have it setup.

sorvival Aug. 4, 2021, 12:20 a.m.
```
Done in rev2.
```

Change Summary:

Fix wording as per grim's suggestion.

Commit:

d01ee226170c

a67a7f977ebc

Diff:

Revision 2 (+93)

Show changes

	hugo/content/about/security/_index.md
	hugo/layouts/shortcodes/static.md
	hugo/static/pgp-pubkey/grim-pubkey.asc

Ship it!

```
Ship It!
```
```
Awesome work, thanks!!
```

Status:: Completed