In the FIRO GitHub repository, we have the SHA256SUMS file to verify the downloaded files : that’s good.
But how can we verify this SHA256SUMS file is the correct encrypted one ? Where is/are the valid PGP key/s of the legit/s FIRO developper/s ?
Here you go Zen: firo/reuben.asc at master · firoorg/firo · GitHub
Thank you DinkBlitz.
You’re very welcome!