@sender: I was able to validate the new key by using gpg --keyserver keys.openpgp.org --recv-keys 5E6DDE998AB73B8E
with the key of validpgpkeys=('95DE904AB800754A11D80B605E6DDE998AB73B8E')
in the PKGBUILD
Found the key here: https://keys.openpgp.org/search?q=5E6DDE998AB73B8E
As a side note, I'm thinking this package that downloads the .phar files directly should be named php-codesniffer-bin
I have a version of the PKGBUILD here that builds the .phar files from the source directly: https://github.com/matt-h/aur-pkgbuilds/blob/main/php-codesniffer/PKGBUILD
Pinned Comments
sender commented on 2018-11-01 13:47 (UTC)
Installation note: the message "One or more PGP signatures could not be verified!" means that you need to import Greg Sherwood's key by running
gpg --recv-keys 31C7E470E2138192
. More info on keys: https://wiki.archlinux.org/index.php/GnuPG#Import_a_public_key