Use keys.openpgp.org instead of pgp.mit.edu

[zeripath]

The SKS Keyserver network has been under attack with poisoned
certificates since at least 2019. Downloading a poisoned certificate has
the awful side-effect of completely breaking your keyring and most
software has now moved off the network and uses the keys.openpgp.org
which has a different protocol instead - in fact one whereby emails are
verified.

For more details regarding the attack see: https://gist.github.com/rjhansen/67ab921ffb4084c865b3618d6955275f

See: https://keys.openpgp.org/about and https://keys.openpgp.org/about/faq

Signed-off-by: Andrew Thornton [email protected]

[ghost]

Just a quick note: gpg --keyserver ... is deprecated. This should go in dirmngr.conf now. Refer to the info docs on GnuPG for details.

[codecov-io]

Codecov Report

Merging #11249 into master will decrease coverage by 0.00%.
The diff coverage is n/a.

@@            Coverage Diff             @@
##           master   #11249      +/-   ##
==========================================
- Coverage   43.29%   43.29%   -0.01%     
==========================================
  Files         605      605              
  Lines       86204    86204              
==========================================
- Hits        37323    37319       -4     
- Misses      44287    44292       +5     
+ Partials     4594     4593       -1     

Impacted Files	Coverage Δ
services/pull/patch.go	65.73% <0.00%> (-3.50%)	⬇️
services/pull/temp_repo.go	31.62% <0.00%> (-2.57%)	⬇️
models/unit.go	41.97% <0.00%> (-2.47%)	⬇️
modules/git/repo.go	49.79% <0.00%> (-1.26%)	⬇️
modules/queue/workerpool.go	58.00% <0.00%> (+2.13%)	⬆️
modules/process/manager.go	78.31% <0.00%> (+3.61%)	⬆️

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update cbf5dff...3028ec2. Read the comment docs.