Bug ID 1219792
Summary Opening "openSUSE-build-key from openSUSE:Leap:15.5:Update project" doesn't offer at any point even the most basic key info despite warning me it's dangerous
Classification openSUSE
Product openSUSE Distribution
Version Leap 15.4
Hardware Other
OS Other
Status NEW
Severity Normal
Priority P5 - None
Component Security
Assignee security-team@suse.de
Reporter el@horse64.org
QA Contact qa-bugs@suse.de
Target Milestone ---
Found By ---
Blocker --- 

When I open the "openSUSE-build-key from openSUSE:Leap:15.5:Update project"
downloaded package, with filename openSUSE-build-key.ymp after downloading,
yast doesn't offer me at any point even the most basic key info despite warning
me it's dangerous to install such keys. There is zero info on issuer, key id,
fingerprint, expiration date, absolutely nothing. Why bother warning anyone
then? This seems like a problematic gap in UI handling and I suggest yast
should really show this information for such a key containing package before
offering to install it or any associated repos.

You are receiving this mail because: