Lintian tag: public-upstream-keys-in-multiple-locations

Type: information

Description (from lintian-explain-tags)

The source package contains public upstream signing keys (or keyrings) in
multiple locations. This situation is potentially confusing for uscan(1)
or any other tool hoping to verify the integrity and authenticity of
upstream sources.

Please remove all keys (or keyrings) except one at the recommended
location debian/upstream/signing-key.asc.

Please refer to the uscan(1) manual page for details.

Visibility: info
Show-Always: no
Check: debian/upstream/signing-key

Affected packages

source version binary tag type tag information count
gdb 15.2-1 information public-upstream-keys-in-multiple-locations upstream-signing-key.pgp upstream/signing-key.asc 1