add-apt-repository should store PGP keys in /usr/share/keyrings because /etc/apt/trusted.gpg.d is deprecated for third party repos
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
software-properties (Ubuntu) |
New
|
Undecided
|
Unassigned |
Bug Description
PPAs are third party repositories. for security reasons, PGP keys for these must not be placed in /etc/apt/
https:/
they should instead be saved to /usr/share/keyrings and the generated .list file for the repo added should refer to its particular key by using a [signed-
please fix add-apt-repository accordingly.
Ubuntu 20.04.2 LTS
software-
This is a duplicate of LP#1862764