Skip to content

Navigation Menu

Sign in

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly
Appearance settings

Commit 2613421

Browse filesBrowse files
ByronByron
authored
Merge pull request #1823 from marcm-ml/master
Remove deprecated section in README.md
2 parents 7ba3fd2 + 2671167 commit 2613421
Copy full SHA for 2613421

File tree

1 file changed

+0
-51
lines changed
Filter options

1 file changed

+0
-51
lines changed

‎README.md

Copy file name to clipboardExpand all lines: README.md
-51Lines changed: 0 additions & 51 deletions
Original file line numberDiff line numberDiff line change
@@ -222,57 +222,6 @@ Please have a look at the [contributions file][contributing].
222222
6. Run `make release`.
223223
7. Go to [GitHub Releases](https://github.com/gitpython-developers/GitPython/releases) and publish a new one with the recently pushed tag. Generate the changelog.
224224

225-
### How to verify a release (DEPRECATED)
226-
227-
Note that what follows is deprecated and future releases won't be signed anymore.
228-
More details about how it came to that can be found [in this issue](https://github.com/gitpython-developers/gitdb/issues/77).
229-
230-
----
231-
232-
Please only use releases from `pypi` as you can verify the respective source
233-
tarballs.
234-
235-
This script shows how to verify the tarball was indeed created by the authors of
236-
this project:
237-
238-
```bash
239-
curl https://files.pythonhosted.org/packages/09/bc/ae32e07e89cc25b9e5c793d19a1e5454d30a8e37d95040991160f942519e/GitPython-3.1.8-py3-none-any.whl > gitpython.whl
240-
curl https://files.pythonhosted.org/packages/09/bc/ae32e07e89cc25b9e5c793d19a1e5454d30a8e37d95040991160f942519e/GitPython-3.1.8-py3-none-any.whl.asc > gitpython-signature.asc
241-
gpg --verify gitpython-signature.asc gitpython.whl
242-
```
243-
244-
which outputs
245-
246-
```bash
247-
gpg: Signature made Fr 4 Sep 10:04:50 2020 CST
248-
gpg: using RSA key 27C50E7F590947D7273A741E85194C08421980C9
249-
gpg: Good signature from "Sebastian Thiel (YubiKey USB-C) <byronimo@gmail.com>" [ultimate]
250-
gpg: aka "Sebastian Thiel (In Rust I trust) <sebastian.thiel@icloud.com>" [ultimate]
251-
```
252-
253-
You can verify that the keyid indeed matches the release-signature key provided in this
254-
repository by looking at the keys details:
255-
256-
```bash
257-
gpg --list-packets ./release-verification-key.asc
258-
```
259-
260-
You can verify that the commit adding it was also signed by it using:
261-
262-
```bash
263-
git show --show-signature ./release-verification-key.asc
264-
```
265-
266-
If you would like to trust it permanently, you can import and sign it:
267-
268-
```bash
269-
gpg --import ./release-verification-key.asc
270-
gpg --edit-key 4C08421980C9
271-
272-
> sign
273-
> save
274-
```
275-
276225
### Projects using GitPython
277226

278227
- [PyDriller](https://github.com/ishepard/pydriller)

0 commit comments

Comments
0 (0)
Morty Proxy This is a proxified and sanitized view of the page, visit original site.