Pinboard (jm)
https://pinboard.in/u:jm/public/
recent bookmarks from jmAuthenticated app packages on Sandstorm with PGP and Keybase2015-11-22T22:46:00+00:00
https://blog.sandstorm.io/news/2015-11-12-authenticated-app-packages.html
jmWhen you go to install a package, Sandstorm verifies that the package is correctly signed by the Ed25519 key. It looks for a PGP signature in the metadata, and verifies that the PGP-signed assertion is for the correct app ID and the email address specified in the metadata. It queries the Keybase API to see what accounts the packager has proven ownership of, and lists them with their links on the app install page.
]]>authentication auth packages sandstorm keybase pgp gpg securityhttps://pinboard.in/https://pinboard.in/u:jm/b:bc75fe7a98d5/