The issue of Manifest signing came up in #gentoo-hardened channel ...
again. Its clearly a security issue and yet many manifests in the tree
are still not signed. Is there any chance that we can agree to reject
unsigned manifests? Possibly a question for the Council to adjudicate?
Anthony G. Basile, Ph.D.
Gentoo Linux Developer [Hardened]
E-Mail : email@example.com
GnuPG FP : 8040 5A4D 8709 21B1 1A88 33CE 979C AF40 D045 5535
GnuPG ID : D0455535