Here is how to register your information so you can perform uploads for your GNU package:
savannah, upload the GPG key (in ASCII-armored format) that you will use to sign your packages. If you haven’t created one before, you can do so with the command
gpg --gen-key(you can accept and/or confirm the default answers to its questions). Then, to get the ASCII-armored version, run ‘gpg --export --armor your_key_id’.
Optional but recommended: Send your key to a GPG public key server:
gpg --keyserver keys.gnupg.net --send-keys keyid, where
keyid is the eight hex digits reported by
--list-public-keys on the
pub line before the date. For full
information about GPG, see https://www.gnu.org/software/gpg.
gpg --clearsign msgfile, and finally email the resulting msgfile.asc to firstname.lastname@example.org.
The administrators will acknowledge your message when they have added the proper GPG keys as authorized to upload files for the corresponding packages.
The upload system will email receipts to the given email addresses when an upload is made, either successfully or unsuccessfully.
Should you later have to update your GPG key, you’ll have to re-submit it to both Savannah and email@example.com, as these systems are not connected.