Hard-code trustworthy signers #149
Description
Current method for PGP key verification is vulnerable to a sybil attack.
Instead of importing all sigs, hard-code a list of trustworthy devs.
{{ message }}
Current method for PGP key verification is vulnerable to a sybil attack.
Instead of importing all sigs, hard-code a list of trustworthy devs.