👩💻 Join our community of thousands of amazing developers!
GitLab uses a GPG key to sign all Omnibus packages created within the CI pipelines to insure that the packages have not been tampered with. This key is seperate from the repository metadata signing key used by package managers and the GPG signing key for the GitLab Runner. The Omnibus package signing key is set to expire on July 1, 2021 and will be extended to expire on July 1, 2022 instead. Why are we extending the deadline? The Omnibus package signing key's expiration is extended each year to ...