IMPORTANT: The key E3F65571B7EC4FBA03A2C5F3EF0DC0801E9FC7AB is no longer valid.
Please remove the key and get a new one.

Yeah, we speak PGP!

If you know the drill, our Key ID and signature is 02872C4ACA4303518C39D0A2D85D5839A1560FFB, created on June 5, 2023 using RSA 3072 encryption algorithm.

Also available on PGP.com (ex. Symantec), MIT, OpenPGP, and Ubuntu keyserver directories.

...or scan the following QR Code to quickly add our key on supported apps.

What is PGP? GPG? OpenGPG? GPGPGPGPGPGPG?

PGP is the OG one, which stands for Pretty Good Privacy. It's a free and open way to encrypt, decrypt, and sign data , thanks to the OpenPGP standard.

People may confuse it with GnuPG (GNU Privacy Guard) which also bears the name GPG. GPG was created when PGP was proprietary, just like why GNU created PSPP as a free replacement of IBM SPSS.

(Fortunately, the creator of the original PGP approved the idea to make PGP an open standard through OpenPGP. Hooray!)

Our keys are meant to be used for any software that supports OpenPGP, including GnuPG, Kleopatra, OpenKeychain, and PGPro which we all actually use.

Why should I care?

We use PGP for many different uses, and that includes:

Make our code and Git commits verified!

By signing our Git commits and published software, you can ensure the integrity of our work.

Note: Due to security and integrity concerns of automated platforms, These commits will be signed only if they are made or authorized by Reinhart.

Share our secrets, together.

Do you have any secret things to share? Use our PGP key to encrypt your message to us.

Also don't forget to share your keys so we can do the same for you.

Make special friends with communities.

No, not the iPhone fanboys and the Recycled Developers, but Linux, Free Software, and journalists.

We are committed to make friends from different sides and backgrounds, as an effort to achieve #InterfaceInPolymorphism.

Did you know? PGP, Signal, and Tor have become staple tools used by journalists around the world to help people share sensitive things and tips?

How to use?

There are a lot of ways to use PGP, depending on your purpose. But yes, you can use the same PGP key pairs for all apps like we do (despite some arguing that this would make the keys less secure).

Emails

If you'd just like to send and receive encrypted emails, try use Enigmail with Thunderbird on desktop, or OpenKeychain with K-9 Mail (soon to be Thunderbird for Android) or FairEmail on Android. You can also manually encrypt and decrypt these emails manually by using any PGP apps, like EasyPGP and PGPro for iOS and iPadOS.

Learn more about PGP email encryption, and contact Edward to test your configuration.

Git commits

If you'd like to sign your Git commits, too, there are dedicated instructions to set that up from your device to BitBucket, Codeberg, GitHub, and GitLab.