Sign source packages for mentors.debian.net

To: debian-mentors@lists.debian.org
Subject: Sign source packages for mentors.debian.net
From: Felix Natter <fnatter@gmx.net>
Date: Thu, 21 Mar 2013 21:08:21 +0100
Message-id: <[🔎] 87y5dg5xe2.fsf@bitburger.home.felix>

hi,

I would like to publish a package to d-mentors for sponsorship soon, and
am wondering how to sign the source package for upload.  Do I even need
to sign packages as a package maintainer (not DM, not DD)?

intro-maintainers writes this:
  "How to upload packages to mentors.debian.net?
  You need to use dput to upload packages. We accept your uploads through
  HTTP or FTP. All packages must be signed with the GnuPG key you
  configured in your control panel."

=> and https://mentors.debian.net/my ("control panel") has an upload
field for a GPG key:
  "GPG-Key:
  Please use the output of gpg --export --export-options export-minimal --armor keyid"
=> shall I use 'gpg --gen-key' to create the key (that will be exported
with command above)?
If yes, which type of key?

How do I make git-buildpackage (calls debuild) use my GPG key for
signing (is there an automatic hook?)

Neither the mentors FAQ nor the maint-guide nor the developers-reference
seem to cover this.

Do I have to follow (some of) these steps?
  http://wiki.debian.org/Keysigning

Any pointers to documentation are much appreciated!
Thank You!
-- 
Felix Natter

Reply to:

Follow-Ups:
- Re: Sign source packages for mentors.debian.net
  - From: Arno Töll <arno@debian.org>

Prev by Date: Bug#703630: RFS: libaria/2.7.5.2-1 [ITP] -- C++ library for MobileRobots/ActivMedia robots
Next by Date: Re: Sign source packages for mentors.debian.net
Previous by thread: Bug#703638: ITP: cloudfuse -- FUSE filesystem for Swift object storage.
Next by thread: Re: Sign source packages for mentors.debian.net
Index(es):
- Date
- Thread