Important: this release fixes 3 vulnerabilities. It is recommended to upgrade from any older version to this one.

Packages:

• weechat-2.7.1.tar.xz (2.1 MB, SHA512, GPG)
• weechat-2.7.1.tar.bz2 (3.0 MB, SHA512, GPG)
• weechat-2.7.1.tar.gz (4.2 MB, SHA512, GPG)

Checking the signatures:

• Import the GPG key:

  $ gpg --keyserver hkps://keys.openpgp.org --recv-keys A9AB5AB778FA5C3522FD0378F82F4B16DEC408F8

  In case of problem, the GPG key can be downloaded here: Release signing key (format: PGP public key).
• Display the fingerprint:

  $ gpg --fingerprint A9AB5AB778FA5C3522FD0378F82F4B16DEC408F8

• Check that the fingerprint is correct by asking to a developer on #weechat (chat.freenode.net).
• Trust the key:

  $ gpg --edit-key A9AB5AB778FA5C3522FD0378F82F4B16DEC408F8
  gpg> trust

• In directory with package + signature:

  $ gpg --verify weechat-2.7.1.tar.xz.asc weechat-2.7.1.tar.xz

• If the signature is OK you should see a message like this one:

  gpg: Signature made Sat 20 Oct 2012 07:36:35 PM CEST using RSA key ID DEC408F8
  gpg: Good signature from "WeeChat (signing key) <webmaster@weechat.org>"