I ran into the issue today that when trying to "add system image <url>" it tries to veirfy via only the minisign key instead of being able to use the GPG one, I went through and reworked my ci pipeline to use minisign but it appears there is no good way to add any other minisign public keys. There is a static list included in "src/op_mode/image_installer.py" so a user could overwrite one of those two keys or replace the "src/op_mode/image_installer.py" with one that includes their location in a custom 1-x build but building neither of those options seems like a proper solution. I think the best solution would be to maybe include a build flag where a user can include the key.
Description
Description
Details
Details
- Version
- -
- Is it a breaking change?
- Perfectly compatible
Related Objects
Related Objects