Version 2.1 (Mar 18, 2018)
Sources (gzip) src weechat-2.1.tar.gz (3.8 MB, sha512, gpg sig)
Sources (bzip2) src weechat-2.1.tar.bz2 (2.7 MB, sha512, gpg sig)
Sources (xz) src weechat-2.1.tar.xz (1.9 MB, sha512, gpg sig)
About release
ChangeLog doc ChangeLog-2.1.html >>
Release notes doc ReleaseNotes-2.1.html >>

Checking the signatures

  • Import the gpg key:
    $ gpg --keyserver ha.pool.sks-keyservers.net --recv-keys A9AB5AB778FA5C3522FD0378F82F4B16DEC408F8
  • Display the fingerprint:
    $ gpg --fingerprint A9AB5AB778FA5C3522FD0378F82F4B16DEC408F8
  • Check that the fingerprint is correct by asking to a developer on #weechat (chat.freenode.net).
  • Trust the key:
    $ gpg --edit-key A9AB5AB778FA5C3522FD0378F82F4B16DEC408F8
    $ trust
  • In directory with package + signature:
    $ gpg --verify weechat-X.Y.Z.tar.xz.asc weechat-X.Y.Z.tar.xz
  • If the signature is OK you should see a message like this one:
    gpg: Signature made Sat 20 Oct 2012 07:36:35 PM CEST using RSA key ID DEC408F8
    gpg: Good signature from "WeeChat (signing key) <webmaster@weechat.org>"