Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

pgp signing #37

Open
jackstar12 opened this issue Oct 31, 2024 · 0 comments · May be fixed by #39
Open

pgp signing #37

jackstar12 opened this issue Oct 31, 2024 · 0 comments · May be fixed by #39
Assignees
@TChukwuleta

Comments

@jackstar12
Copy link

jackstar12 commented Oct 31, 2024
edited
Loading

Plugins should be able to utilize pgp for release authenticity. I propose the following flow:

Allow Plugins to configure one or multiple pgp public keys which are allowed to sign releases.
image

If keys are configured, a new build will be in Unsigned state after finishing. Plugin authors will have to sign the provided shasum manifest in order to actually release.

Looking ahead, those pgp keys could be exposed via the api aswell to allow btcpay itself to download those and verify plugins.

This could protect against compromise of plugin builder accounts or the entire builder service. Btcpay servers could download and store the key upon first install and then subsequently check for changes on plugin updates. If the key expired or changed, a warning can be showed to tell the user to verify whats been happening externally.
@TChukwuleta TChukwuleta linked a pull request Nov 5, 2024 that will close this issue
Draft
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@TChukwuleta TChukwuleta

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Pgp signing TChukwuleta/btcpayserver-plugin-builder
2 participants
@TChukwuleta @jackstar12