I use apt and dnf. They all do some form of verification. Ve...

原始 JSON

{
  "kind": 1,
  "id": "a8200f9f0750cf49e2addc68409f496af0fec0a809ecbc2dbb58b1d0fa7b5d32",
  "pubkey": "726a1e261cc6474674e8285e3951b3bb139be9a773d1acf49dc868db861a1c11",
  "created_at": 1772295574,
  "tags": [
    [
      "e",
      "f92e8203feeff750dd88de865f274d7e508e28d2dc977158bd1baacb48e2d630",
      "wss://pyramid.fiatjaf.com/",
      "root",
      "17538dc2a62769d09443f18c37cbe358fab5bbf981173542aa7c5ff171ed77c4"
    ],
    [
      "e",
      "80f2114da562eec5b927449dace8852e37d66e11e32c360e2af5bf942caa7bb3",
      "wss://nos.lol/",
      "reply",
      "b7ed68b062de6b4a12e51fd5285c1e1e0ed0e5128cda93ab11b4150b55ed32fc"
    ],
    [
      "p",
      "ae4c17620c9b3a0413fd019fd7e983da43b2081e7169abecb7764c333a9bfff1"
    ],
    [
      "p",
      "32e1827635450ebb3c5a7d12c1f8e7b2b514439ac10a67eef3d9fd9c5c68e245"
    ],
    [
      "p",
      "356875ffd729b06eeb4c1d7a70a1f750045d067774d21c0faffe4af2bf96a2e8"
    ],
    [
      "p",
      "17538dc2a62769d09443f18c37cbe358fab5bbf981173542aa7c5ff171ed77c4"
    ],
    [
      "p",
      "4a0510f26880d40e432f4865cb5714d9d3c200ca6ebb16b418ae6c555f574967"
    ],
    [
      "p",
      "3b7fc823611f1aeaea63ee3bf69b25b8aa16ec6e81d1afc39026808fe194354f"
    ],
    [
      "p",
      "78ce6faa72264387284e647ba6938995735ec8c7d5c5a65737e55130f026307d"
    ],
    [
      "p",
      "b7ed68b062de6b4a12e51fd5285c1e1e0ed0e5128cda93ab11b4150b55ed32fc"
    ]
  ],
  "content": "I use apt and dnf. They all do some form of verification. Verifying repo pubkeys UX is bad, and there is no second layer of defence (e.g. malware makes it into a repo, not uncommon)",
  "sig": "0c80a15fdc77dfc8223068cdf1a01e97cabec06689bf0aeb4ab5efad5026e93ce46ec84b1e27ab7420be5a0f7ce125c50a4dfa1685213545ad0611029205142a"
}