Zip archive and GPG signature don't match for Piwik 2.13.1 #7863
Labels
answered
For when a question was asked and we referred to forum or answered it.
c: Security
For issues that make Matomo more secure. Please report issues through HackerOne and not in Github.
Critical
Indicates the severity of an issue is very critical and the issue has a very high priority.
@mattab @mnapoli
Following the missing
tar.gz
archive (#7860), I've been trying to improve the Makefile used to generate the Debian package.During this process, I've discovered that the
zip
andzip.asc
do not match.Could we please have a look at this ?
md5:
61ef6b4590a1263fa5f31bde89d258e8 piwik-2.13.1.zip
md5:
3825d7752646efac96ddd418d23ad38a piwik-2.13.1.zip.asc
sha256:
c7bb651fbd9e8349c47b6fa0a93e8a798a477d5ef8ac9bc9e415d266e24cb5b0 piwik-2.13.1.zip
sha256:
adcf61ec86256c666eef7c7547f8d79366e27e3d41c2f07ddbff4253801a9b8c piwik-2.13.1.zip.asc
GPG Error (
gpg --verify piwik-2.13.1.zip.asc
):gpg: Signature made Thu 07 May 2015 09:52:31 AEST using RSA key ID 5590A237
gpg: BAD signature from "Matthieu Aubry <matt@piwik.org>"
The text was updated successfully, but these errors were encountered: