Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/freedomofpress/yum-tools-prod

Artifact storage for Dangerzone and other non-SD .rpm packages
https://github.com/freedomofpress/yum-tools-prod

Last synced: 7 days ago
JSON representation

Artifact storage for Dangerzone and other non-SD .rpm packages

Host: GitHub
URL: https://github.com/freedomofpress/yum-tools-prod
Owner: freedomofpress
Created: 2022-10-04T17:53:57.000Z (about 2 years ago)
Default Branch: main
Last Pushed: 2024-10-16T12:27:38.000Z (28 days ago)
Last Synced: 2024-10-18T10:43:11.060Z (26 days ago)
Language: Python
Size: 58.6 KB
Stars: 1
Watchers: 6
Forks: 3
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

        # FPF Tools RPM packages LFS repo

This repository holds RPM packages served on `packages.freedom.press`.

Currently, this includes [Dangerzone](https://dangerzone.rocks/).

## Prerequisites

- A Fedora machine, since we will use the RPM toolchain.

- [git-lfs](https://git-lfs.github.com/) to store large files.

- `gpg`, for fetching the public/private keys.

- `rpm-sign`, for signing the packages.

## Usage

- Set up a machine with the GPG key used for signing/verifying RPMs.

- Copy package files to each suite in `dangerzone`. You may want to

  prune older versions as new ones are released, to keep the repo

  manageable.

- Sign packages with `/scripts/publish.py --sign --all`. You need the private key

  in the GPG keyring for this action.

- Verify package signatures with `/scripts/publish.py --verify --all`. You need

  the public key in the GPG keyring for this action.