The packages for gitlab-runner on gitlab.com are unsigned
Greetings,
In the repo, you list a gpg key, however, the packages on the website are unsigned.
[runner_gitlab-ci-multi-runner]
name=runner_gitlab-ci-multi-runner
baseurl=https://packages.gitlab.com/runner/gitlab-ci-multi-runner/el/7/$basearch
repo_gpgcheck=1
gpgcheck=0
enabled=1
>>> gpgkey=https://packages.gitlab.com/runner/gitlab-ci-multi-runner/gpgkey
sslverify=1
sslcacert=/etc/pki/tls/certs/ca-bundle.crt
and,
rpm -K /var/cache/yum/x86_64/7/runner_gitlab-ci-multi-runner/packages/gitlab-ci-multi-runner-1.1.0-1.x86_64.rpm
/var/cache/yum/x86_64/7/runner_gitlab-ci-multi-runner/packages/gitlab-ci-multi-runner-1.1.0-1.x86_64.rpm: sha1 md5 OK
This means that systems like Spacewalk get very cranky and refuse to install the package. :-(
Edited by Alessio Caiazza (OOO until 2024-08-26)