search for: d05d

With the new signature file I was able to verify, but there was still a bad signature: "gpg: key 0x0FC3042E345AD05D: 1 bad signature" which I highlighted below. Didn't seem to be a problem, but thought I'd point it out. I'd be glad to do additional tests if you'd like. $ gpg --list-keys /home/wink/.gnupg/pubring.kbx ----------------------------- pub rsa4096/0x9F79B9CEB03232F9 2018-04-18 [...

...0.0/llvm-8.0.0.src.tar.xz http://releases.llvm.org/8.0.0/llvm-8.0.0.src.tar.xz.sig http://releases.llvm.org/8.0.0/hans-gpg-key.asc I tried to import hans-gpg-key.asc but got an error: $ gpg --import hans-gpg-key.asc gpg: Note: signatures using the SHA1 algorithm are rejected gpg: key 0x0FC3042E345AD05D: 2 bad signatures gpg: key 0x0FC3042E345AD05D: no valid user IDs gpg: this may be caused by a missing self-signature gpg: Total number processed: 1 gpg: w/o user IDs: 1 Searched around and found there is ----allow-non-selfsigned-uid and it appears to succeed: $ gpg --import --allow-non-s...