← Back to context

Comment by ilikebits

3 months ago

You are correct. The reason we built this tool is because all of the scripts we found had sharp edges when we tried to use them in production at scale (I talk about some of them here: https://news.ycombinator.com/item?id=43730136).

Most of these scripts were designed for a world where there was A Blessed Deployment Machine that acted as its own de facto centralized control plane. We're designed for a newer world where publishing is just another piece of your CI, so you need more features to handle concurrency control, distributed signing, incremental index rebuilds, etc.

7 comments

ilikebits

Reply
benwilber0  3 months ago

What is an example of something that would require "distributed signing"?

  • ilikebits  3 months ago

    Our use case is customers who (1) want to use a managed cloud hosting service that we provide, but (2) are not willing to give us their signing keys. Our design allows them to keep all of their signing keys local to their environment.

    To our knowledge, we have not found another provider who supports both of these requirements. It's not some amazing technical innovation, but it is one of those annoying paper cuts that builds up with all the others.

    • benwilber0  3 months ago

      > when we tried to use them in production at scale

      Debian and Ubuntu have been using them in production and "at scale" for decades. What are the "sharp edges" that you're trying to solve?

      1 reply →

    • rlpb  3 months ago

      Signing an unsigned apt repository is about three gpg commands though. I don't see how this kind of thing requires a whole separate product.

      1 reply →