JSON support for sq keyring list, sq wkd url
The Sequoia command line tool sq
has gained support for the sq keyring list
and sq wkd url
commands.
The Sequoia command line tool sq
has gained support for the sq keyring list
and sq wkd url
commands.
We are pleased to announce a new release of sq, our command line tool for OpenPGP operations. This release brings some more functionality, as well as some bug fixes. A summary of the user-visible changes from the past four months since the previous release: sq can now add and remove key User IDs. sq can now generate a subkey for authentication. sq now handles malformed certificates in a sq keyring list more gracefully.
The GnuPG command line tool gpg
is the most popular
implementation of the OpenPGP specification. The Sequoia PGP
project produces the corresponding sq
tool, and that tool is
very much in its early stages. In the long run, we want sq
to become
so capable it has a comparable feature set to gpg
. This blog post is
a comparison of what the two tools can do.
We are pleased to announce a new release of the Octopus, an alternative OpenPGP backend for Thunderbird. This release notably fixes a bug that could lead to a loss of secret key material. It also includes fixes that make the Octopus compatible with Thunderbird 91.8.0.
We are pleased to announce a new release of the Octopus, an alternative OpenPGP backend for Thunderbird. This release brings compatibility with newer versions of Thunderbird (Thunderbird 99 and up), a few bug fixes, and some documentation improvements.
Would you like to use Sequoia sq
from your script? We’d like your
feedback.
I’m sketching what the JSON output of sq
might look like. We in the
Sequoia project would like to make sure the JSON serves you well and
is convenient for your code to consume. This blog post outlines the
principles of how JSON output is meant to work, and has a concrete
example of what it’s meant to look like. Your feedback would very much be
appreciated.
Last month I was looking for volunteers to be interviewed as stakeholders for sq. The interviews happened last week and this is an anonymized summary of what I was told. I promised to make the summary anonymous to let the volunteers speak more freely.
The Sequoia PGP project condemns the war that the Russian government is waging against our friends in Ukraine.
Do you use sq
or want to use it in the future? Please volunteer to
help guide its development.
Sequoia isn’t just a library. It just takes a library-first approach.
Sequoia’s command-line interface, which exposes a lot of the library’s
functionality, is called sq
. It already exists in a basic form, but a
lot of functionality is missing. You can help with that.
The NLnet Foundation has granted me funding (from the NGI Assure
fund, financially supported by the European Council) to improve the
Sequoia sq
program in three ways.
I will add important missing functionality, especially compared to GnuPG. This work will be guided by feedback from actual and potential users and the wisdom of Sequoia developers.
I will also add a JSON API to allow sq to be used from scripts.
Ideally, other programs would use the Sequoia library directly,
however, using sq
from other programs should be easy and secure, and
JSON is a better format than parsing textual output or ad hoc
structured data formats
I will additionally document the acceptance criteria of sq
and how
they are verified automatically, to make sure sq
does the right
thing for its users, and to help keep sq
working far into the
future.
I have now started the work, and am about to reach the first milestone.
Copyright (c) 2018-2023, p≡p foundation.
This work is licensed under a Creative Commons Attribution 4.0 International License.
Follow us on Mastodon.
Template by Bootstrapious.
Ported to Hugo by DevCows.
Images by Ingo Kleiber, and Robert Anders.