Also mention the release key id in the release notes

...as quite some users are more used to downloading keys from key servers. -- Change-Id: I6bb60a618d50c7c70561eb5851932153c470e3d2 Reviewed-on: https://bazel-review.googlesource.com/#/c/6934 MOS_MIGRATED_REVID=137526194
author: Klaus Aehlig <aehlig@google.com> 2016-10-28 17:37:35 +0000
committer: John Cater <jcater@google.com> 2016-10-28 20:21:40 +0000
commit: baccf2484ce644fffd91d6c8a1995bbb8d5b5a6e (patch)
tree: 884381d0a90d7949a8fdc6510757b7611cf8e279 /scripts
parent: da95be8f60c7c1fd905eda22c321a7f576be4e99 (diff)
1 files changed, 2 insertions, 2 deletions
diff --git a/scripts/ci/build.sh b/scripts/ci/build.sh
index fcb3a7ad7d..de7578a31e 100755
--- a/scripts/ci/build.sh
+++ b/scripts/ci/build.sh
@@ -224,7 +224,7 @@ Classpath exception. Those installers should always be redistributed along with
 the source code.
 
 _Security_: All our binaries are signed with our
-[public key](https://bazel.build/bazel-release.pub.gpg).
+[public key](https://bazel.build/bazel-release.pub.gpg) 48457EE0.
 "
 
   if [ ! -x "${release_tool}" ]; then
@@ -254,7 +254,7 @@ function create_index_md() {
   echo
   # Security notice
   echo "_Security_: All our binaries are signed with our"
-  echo "[public key](https://bazel.build/bazel-release.pub.gpg)."
+  echo "[public key](https://bazel.build/bazel-release.pub.gpg) 48457EE0."
   echo
   for f in $1/*.sha256; do  # just list the sha256 ones
     local filename=$(basename $f .sha256);
author	Klaus Aehlig <aehlig@google.com>	2016-10-28 17:37:35 +0000
committer	John Cater <jcater@google.com>	2016-10-28 20:21:40 +0000
commit	baccf2484ce644fffd91d6c8a1995bbb8d5b5a6e (patch)
tree	884381d0a90d7949a8fdc6510757b7611cf8e279 /scripts
parent	da95be8f60c7c1fd905eda22c321a7f576be4e99 (diff)