From 94f61c5b29274df164b01105165945e445289ae7 Mon Sep 17 00:00:00 2001
From: Wieland Hoffmann <themineo@googlemail.com>
Date: Wed, 6 Jul 2011 13:02:19 +0200
Subject: makepkg: Add support for verifying pgp signatures

Many projects provide signature files along with the source code
archives. It's good to check these, too, when verifying the integrity
of source code archives.
Not everybody is using gpg so the verification can be disabled with
--skippgpcheck.
Additionally, only a warning is displayed when the key that signed the
source file is unknown.

Signed-off-by: Allan McRae <allan@archlinux.org>
Signed-off-by: Dan McGee <dan@archlinux.org>
---
 doc/makepkg.8.txt | 3 +++
 1 file changed, 3 insertions(+)

(limited to 'doc')

diff --git a/doc/makepkg.8.txt b/doc/makepkg.8.txt
index ffc01cd5..57c1f899 100644
--- a/doc/makepkg.8.txt
+++ b/doc/makepkg.8.txt
@@ -87,6 +87,9 @@ Options
 *--skipinteg*::
 	Do not perform any integrity checks, just print a warning instead.
 
+*\--skippgpcheck*::
+	Do not verify PGP signatures of the source files.
+
 *-h, \--help*::
 	Output syntax and command line options.
 
-- 
cgit v1.2.3-24-g4f1b