InRelease provides only weak security information

[ServerForge]

apt update shows " The repository 'http://your.repo distro InRelease' provides only weak security information." when trying to use newly created repositories.

Detailed Description

Whenever a new repo is created it gets this error when trying to be used. I have a setup with this that has been running for a few years and any of the older repos still work and i can publish new packages to them without issue. But any new distros added get this error. I also tried setting up a fresh Ubuntu 22.04 machine and setting it up from scratch and run into the same issue, anything created shows that error.

Context

This makes any new repos setup unusable.

Possible Implementation

Your Environment

VERSION_ID="22.04"
VERSION="22.04.4 LTS (Jammy Jellyfish)"
aptly version: '1.5.0'

[ServerForge]

I think i found part of the issue. It seems that in some cases when specifying the different architectures a space can be added and it generates the release file like below, the whitespace seems to cause apt to show the security error.

SHA512:
 3796520426852d7b43c0ed7907290bfd47509a82cbf1913767dabed44d31d75f51ba3262310d36b10b485dd288edde69bcf697027f6896192e3661c2223a9652   225273 Contents- arm64
 30e324fb241283bb3909186b82fa5e0d081eab2db71b1eac82c14b9651f78acfb248bb294433524a654b714750bca7d894f1543c8ecebc51f102f76bd1f13b72    11407 Contents- arm64.gz
 3796520426852d7b43c0ed7907290bfd47509a82cbf1913767dabed44d31d75f51ba3262310d36b10b485dd288edde69bcf697027f6896192e3661c2223a9652   225273 Contents- armhf
 30e324fb241283bb3909186b82fa5e0d081eab2db71b1eac82c14b9651f78acfb248bb294433524a654b714750bca7d894f1543c8ecebc51f102f76bd1f13b72    11407 Contents- armhf.gz
 3796520426852d7b43c0ed7907290bfd47509a82cbf1913767dabed44d31d75f51ba3262310d36b10b485dd288edde69bcf697027f6896192e3661c2223a9652   225273 Contents- i386
 30e324fb241283bb3909186b82fa5e0d081eab2db71b1eac82c14b9651f78acfb248bb294433524a654b714750bca7d894f1543c8ecebc51f102f76bd1f13b72    11407 Contents- i386.gz
 3796520426852d7b43c0ed7907290bfd47509a82cbf1913767dabed44d31d75f51ba3262310d36b10b485dd288edde69bcf697027f6896192e3661c2223a9652   225273 Contents- mips
 30e324fb241283bb3909186b82fa5e0d081eab2db71b1eac82c14b9651f78acfb248bb294433524a654b714750bca7d894f1543c8ecebc51f102f76bd1f13b72    11407 Contents- mips.gz
 f9dd80d28ecaade5fd0302b60ed33a35e96972020c2920132dc8e3df3abba5980fa170477df6ac1272221d9bd737ccec85e40dcaf63e19af5befbe101cac0cb0   353181 Contents-amd64
 a095b8b7d6f173eb0a7b189561b6d884250c9bd2a2f9a57e6fc7a198fad21b41f61927e3a92e8aa5160d91fce7e2d8e3de936f031e284b1df3e7bf1d11519bd5    23032 Contents-amd64.gz
 3796520426852d7b43c0ed7907290bfd47509a82cbf1913767dabed44d31d75f51ba3262310d36b10b485dd288edde69bcf697027f6896192e3661c2223a9652   225273 main/Contents- arm64
 30e324fb241283bb3909186b82fa5e0d081eab2db71b1eac82c14b9651f78acfb248bb294433524a654b714750bca7d894f1543c8ecebc51f102f76bd1f13b72    11407 main/Contents- arm64.gz
 3796520426852d7b43c0ed7907290bfd47509a82cbf1913767dabed44d31d75f51ba3262310d36b10b485dd288edde69bcf697027f6896192e3661c2223a9652   225273 main/Contents- armhf
 30e324fb241283bb3909186b82fa5e0d081eab2db71b1eac82c14b9651f78acfb248bb294433524a654b714750bca7d894f1543c8ecebc51f102f76bd1f13b72    11407 main/Contents- armhf.gz
 3796520426852d7b43c0ed7907290bfd47509a82cbf1913767dabed44d31d75f51ba3262310d36b10b485dd288edde69bcf697027f6896192e3661c2223a9652   225273 main/Contents- i386
 30e324fb241283bb3909186b82fa5e0d081eab2db71b1eac82c14b9651f78acfb248bb294433524a654b714750bca7d894f1543c8ecebc51f102f76bd1f13b72    11407 main/Contents- i386.gz
 3796520426852d7b43c0ed7907290bfd47509a82cbf1913767dabed44d31d75f51ba3262310d36b10b485dd288edde69bcf697027f6896192e3661c2223a9652   225273 main/Contents- mips
 30e324fb241283bb3909186b82fa5e0d081eab2db71b1eac82c14b9651f78acfb248bb294433524a654b714750bca7d894f1543c8ecebc51f102f76bd1f13b72    11407 main/Contents- mips.gz
 f9dd80d28ecaade5fd0302b60ed33a35e96972020c2920132dc8e3df3abba5980fa170477df6ac1272221d9bd737ccec85e40dcaf63e19af5befbe101cac0cb0   353181 main/Contents-amd64
 a095b8b7d6f173eb0a7b189561b6d884250c9bd2a2f9a57e6fc7a198fad21b41f61927e3a92e8aa5160d91fce7e2d8e3de936f031e284b1df3e7bf1d11519bd5    23032 main/Contents-amd64.gz
 7387c2aff3d5122086f42a7efe2d3386c75ecc09e4f279c79f6e591b5b3c48b210409842ad4a13f4621347e5f357371087b51dc1b40d9060bc9a84b88280bcc8    24653 main/binary- arm64/Packages
 5e552ae75ef9c986addd85f6812978b6ec5b618a4e5833a64b2458a33e3f76349701c4ddbf591c4f7dbe93a9b1bd31c7418ca7677ab8d1d8c8f880299b4cc3dd     6795 main/binary- arm64/Packages.bz2
 d9e290eae9081bc5a6f184beb29e0031e107da8d662a42851958600a5a1ecf86b230f3a2da89670939411f37341ac4a7f3df6a4465b29c82efa8fb202f211720     7007 main/binary- arm64/Packages.gz
 65233cd216fe94b344af2948cc2ba89c5706c566fa2d6c924d7908506f181ec1d4cfc90c1ba3f1ae6546ba1705cb1678333a4ca0b9ee73a7eab046bc182467fb       96 main/binary- arm64/Release
 7387c2aff3d5122086f42a7efe2d3386c75ecc09e4f279c79f6e591b5b3c48b210409842ad4a13f4621347e5f357371087b51dc1b40d9060bc9a84b88280bcc8    24653 main/binary- armhf/Packages
 5e552ae75ef9c986addd85f6812978b6ec5b618a4e5833a64b2458a33e3f76349701c4ddbf591c4f7dbe93a9b1bd31c7418ca7677ab8d1d8c8f880299b4cc3dd     6795 main/binary- armhf/Packages.bz2
 d9e290eae9081bc5a6f184beb29e0031e107da8d662a42851958600a5a1ecf86b230f3a2da89670939411f37341ac4a7f3df6a4465b29c82efa8fb202f211720     7007 main/binary- armhf/Packages.gz
 f9b3deb8ee313475164580bc64aa4e53336caee1ee4e39b6b08694c6e191374e3a8c39e136d4e82b53397ecb286b18bfb505bedee125ffa2299f5dac52518e5d       96 main/binary- armhf/Release
 7387c2aff3d5122086f42a7efe2d3386c75ecc09e4f279c79f6e591b5b3c48b210409842ad4a13f4621347e5f357371087b51dc1b40d9060bc9a84b88280bcc8    24653 main/binary- i386/Packages
 5e552ae75ef9c986addd85f6812978b6ec5b618a4e5833a64b2458a33e3f76349701c4ddbf591c4f7dbe93a9b1bd31c7418ca7677ab8d1d8c8f880299b4cc3dd     6795 main/binary- i386/Packages.bz2
 d9e290eae9081bc5a6f184beb29e0031e107da8d662a42851958600a5a1ecf86b230f3a2da89670939411f37341ac4a7f3df6a4465b29c82efa8fb202f211720     7007 main/binary- i386/Packages.gz
 8f6e3aec09643387e8124dc255f7a00d3e62398cad0e14a3ed68d5b4376bdddf536995d2f37cfc1f56352201fbf44caa5caa225ad887c2d33d1c68a053e67777       95 main/binary- i386/Release
 7387c2aff3d5122086f42a7efe2d3386c75ecc09e4f279c79f6e591b5b3c48b210409842ad4a13f4621347e5f357371087b51dc1b40d9060bc9a84b88280bcc8    24653 main/binary- mips/Packages
 5e552ae75ef9c986addd85f6812978b6ec5b618a4e5833a64b2458a33e3f76349701c4ddbf591c4f7dbe93a9b1bd31c7418ca7677ab8d1d8c8f880299b4cc3dd     6795 main/binary- mips/Packages.bz2
 d9e290eae9081bc5a6f184beb29e0031e107da8d662a42851958600a5a1ecf86b230f3a2da89670939411f37341ac4a7f3df6a4465b29c82efa8fb202f211720     7007 main/binary- mips/Packages.gz
 2d52aa639f4a9b6edf8b9ec85b807b952a963f9beb3d032ad9a62ae084af773d8fe4eb6f4573f3f3793fa221075be8c08abc2983dce3983b7179c0d9623e3ce9       95 main/binary- mips/Release
 38ded7ed7fae34b7be1f5e7c3a160e959320a4bd5a22972247fe7c28533a7b478bbc6b2176c68fa4f0b1019b18fbc064faac4d7b04745d8ce5cc148e93d38238    69236 main/binary-amd64/Packages
 f143f791551c529300158da7100b1f10ef0c8eacc074954d75cf53ce2dc20ab5ee7b1b8ab4325e91744116292671972654944a3d55ec576cd7275b8b5108e979    17448 main/binary-amd64/Packages.bz2
 022048219fa17e39b7287e02acba86ee96028ad0d79d3e5ce538ac29d9a58523022db740b87c5e13c3718c5a98e06cabb58442b5f1ca6a7b63189aba41133b7e    19044 main/binary-amd64/Packages.gz
 b25a43cbdfb3932575f522e687ff7762c7d9bf9752398184c49ac0923e77ea973cc90183650911878611315b4ea7701ec440d6bfa1f6869550e58e448433aec1       95 main/binary-amd64/Release
-----BEGIN PGP SIGNATURE-----