Version 2.7.1 ()
Warning: the version 2.7.1 has one or more vulnerabilities, it is not recommended to use it. Vulnerabilities fixed in versions: 3.2.1.
Packages:
- weechat-2.7.1.tar.xz (2.1 MB, SHA512, GPG)
- weechat-2.7.1.tar.bz2 (3.0 MB, SHA512, GPG)
- weechat-2.7.1.tar.gz (4.2 MB, SHA512, GPG)
Checking the signatures:
-
Import the GPG key:
In case of problem, the GPG key can be downloaded here: Release signing key (format: PGP public key).$ gpg --keyserver hkps://keys.openpgp.org --recv-keys A9AB5AB778FA5C3522FD0378F82F4B16DEC408F8 -
Display the fingerprint:
$ gpg --fingerprint A9AB5AB778FA5C3522FD0378F82F4B16DEC408F8 - Check that the fingerprint is correct by checking the topic on #weechat channel (irc.libera.chat) or by asking to a developer.
-
Trust the key:
$ gpg --edit-key A9AB5AB778FA5C3522FD0378F82F4B16DEC408F8 gpg> trust -
In directory with package + signature:
$ gpg --verify weechat-2.7.1.tar.xz.asc weechat-2.7.1.tar.xz -
If the signature is OK you should see a message like this one:
gpg: Signature made Sat 20 Oct 2012 07:36:35 PM CEST using RSA key ID DEC408F8 gpg: Good signature from "WeeChat (signing key) <webmaster@weechat.org>"