Posts Tagged ‘tuleap’

Delivering RPM packages securely and continuously with Jenkins and Hashicorp Vault

August 27, 2017 Leave a comment

When you publicly deliver more than eight releases a day—like we do for our software—making sure that users can verify the authenticity of the deliverables becomes a challenge. Over the past few weeks we have modified our Jenkins build pipelines to GPG sign every RPM package we deliver, thus enhancing the level of security we bring to every user.

Why GPG signing RPM packages is important?

Read the full article…

Categories: Interesting Tags: