Why yarn key update failes all the time? GPG error: https://dl.yarnpkg.com/debian stable InRelease: The following signatures couldn't be verified
Every time apt update
shows error
W: GPG error: https://dl.yarnpkg.com/debian stable InRelease: The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 23E7166788B63E1E
E: The repository 'https://dl.yarnpkg.com/debian stable InRelease' is not signed.
I tried
curl -sS https://dl.yarnpkg.com/debian/pubkey.gpg | sudo apt-key add -
gpg: invalid key resource URL '/etc/apt/trusted.gpg.d/home:stevenpusser.gpg'
gpg: keyblock resource '(null)': General error
gpg: key 7721F63BD38B4796: 2 signatures not checked due to missing keys
With y-ppa-manager I go the same
gpg: invalid key resource URL '/etc/apt/trusted.gpg.d/home:stevenpusser.gpg'
gpg: keyblock resource '(null)': General error
gpg: key 7721F63BD38B4796: 2 signatures not checked due to missing keys
gpg: key 0FAD31CA8719FCE4: 1 signature not checked due to a missing key
gpg: key 3B4FE6ACC0B21F32: 3 signatures not checked due to missing keys
gpg: key D94AA3F0EFE21092: 3 signatures not checked due to missing keys
gpg: key 871920D1991BC93C: 1 signature not checked due to a missing key
I added this key for my Github authentication,so I am afraid to delete it from list. I can not find it with
apt-key list
/etc/apt/trusted.gpg
--------------------
pub rsa4096 2016-04-12 [SC]
EB4C 1BFD 4F04 2F6D DDCC EC91 7721 F63B D38B 4796
uid [ unknown] Google Inc. (Linux Packages Signing Authority) <[email protected]>
sub rsa4096 2019-07-22 [S] [expires: 2022-07-21]
pub rsa4096 2014-09-08 [SC]
67CE 018F D19E 3CD4 8189 BC69 2180 17D1 CC5F DB34
uid [ unknown] Yandex Browser Repository Key <[email protected]>
sub rsa4096 2014-09-08 [E]
pub rsa4096 2018-12-04 [SC] [expires: 2021-01-22]
B44B 85E3 E1A6 386B FC79 D411 9658 E804 4A3A A3D6
uid [ unknown] Vivaldi Package Composer KEY05 <[email protected]>
sub rsa4096 2018-12-04 [E] [expires: 2021-01-22]
The mentioned file looks like compiled binary(I guess)
�\ #>p�����N��M�����k��2C�2�����5�Z~W?4����dm��}q�Q���ޠE�m�
!��� 8�GFd]���ǚD�7��X�5�D�LG�E��S��O`{
��n-��1�<�+�*�լ�ak�,���Na����
D�i�5�NÁ��6��C��f�A�z?NTX��`*��`�c��(����\�]8���a��Sw��Dhome:stevenpusser OBS Project <home:[email protected]>�>([��� �
�
�1ʇ����P�:31'���"�Ȭ��|�����������oH��e�М��\*2�m���YF�;z#a2K�g�*��yA�yQ0T@�{"�'��
}dH�[�y�1�X�_5Y��S�218a0��O�� ���j�4;�Àܶ��6ja�J=��}0�f
�\G{E>{U�u��3ުmEÜ!�c9����F�����
������3��T2�%��1}��v�!u����`TcCh\������q� ���Lu����0tc�s$�FW��v
;0�k�e#�K�s���,�%�O~ܺ<���06%�nP2��s�):
Should I delete it?
How to inspect gpg resources and solve this?
Solution 1:
I had same problem, I just run this command:
curl -sS https://dl.yarnpkg.com/debian/pubkey.gpg | sudo apt-key add -
I got it from here: https://www.ubuntuupdates.org/ppa/yarn
Solution 2:
You can usually update all of your keys at once using:
sudo apt-key adv --refresh-keys --keyserver keyserver.ubuntu.com
this worked for me
Solution 3:
Build on @PA-GW's answer, I created a Cronjob that refreshes the keys daily. Hopefully, that helps for the frequently rotating keys, like NodeJS:
17 2 * * * /usr/bin/apt-key adv --refresh-keys --keyserver keyserver.ubuntu.com > /dev/null