PGP signing of reports

There should be a possibility for report mails to be signed by verifiable PGP key.

(Issue from Dubovice.)

assigned to @Jan_Mach

By Pavel Kácha on 2024-12-26T14:06:26

added C-Dev-Core P4 S-New T-Feature labels

changed milestone to %Backlog

unassigned @Jan_Mach

By Pavel Kácha on 2024-12-26T14:17:08

I see 2 ways here:

• use a Python library (probably https://pypi.org/project/python-gnupg)
• use GPG from the system

I like the former way using Python library, but it will bring another dependency.

By Rajmund Hruška on 2023-05-18T13:33:57

Took a look. python-gnupg is quite extensive wrapper around gnupg binary (key generation, trust setting, keyring management, ...) It won't help with GPG/MIME, with signature attachment construction at all. The only thing we would use from this library is probably GPG.encrypt_file, which is just something akin to Popen("gnupg --clearsign --default-key ...), and all the base64/mime logic is still on us.

By Pavel Kácha on 2023-05-19T13:06:55