We have moved to https://codeberg.org/KOLANICH-tools/AptSourcesHardener.py, grab new versions there.
Under the disguise of "better security" Micro$oft-owned GitHub has discriminated users of 1FA passwords while having commercial interest in success of FIDO 1FA specifications and Windows Hello implementation which it promotes as a replacement for passwords. It will result in dire consequencies and is competely inacceptable, read why.
If you don't want to participate in harming yourself, it is recommended to follow the lead and migrate somewhere away of GitHub and Micro$oft. Here is the list of alternatives and rationales to do it. If they delete the discussion, there are certain well-known places where you can get a copy of it. Read why you should also leave GitHub.
This is the library to harden sources.lists
using the recommendations from https://wiki.debian.org/DebianRepository/UseThirdParty (for all the sources).
- Binds every source to its public key.
- If a file is present, uses the file
- Otherwise uses key fingerprint.