APT repo: Signature by key uses weak digest algorithm (SHA1)

I’m testing out the Beta2 of the upcoming Ubuntu 16.04 release and I’m getting a warning from apt-get.
I added the Sonarr repo using the commands here https://github.com/Sonarr/Sonarr/wiki/Installation#debianubuntu and when I run apt-get update I am seeing this warning:
W: http://apt.sonarr.tv/dists/develop/InRelease: Signature by key A236C58F409091A18ACA53CBEBFF6B99D9B78493 uses weak digest algorithm (SHA1)

This is just a warning and the install works fine when I proceed to apt-get install nzbdrone, but I just wanted to make you aware of the warning. It looks like this might be helpful in resolving the issue: https://wiki.debian.org/Teams/Apt/Sha1Removal

We have an issue filed, something we’ll look at when we redo the packages in v3.

Great! Thanks for the link to the Issue.

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.