-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

For context, please read [0].

The private cryptographic material used in my signing key was accessible
from a machine that was affected by the XZ backdoor.  While I have no
reason to believe that it was targeted or collected during that campaign,
out of an abundance of caution I have rotated all of my cryptographic
keys.

My new OpenPGP key has fingerprint:

  0C94 3D95 ED13 9DCD 4C26 4CD3 72DB 026E 04C1 C768

The full key is available at [1] or via WKD.


[0] https://en.wikipedia.org/wiki/XZ_Utils_backdoor 
[1] https://aerusso.net/public-key.asc
-----BEGIN PGP SIGNATURE-----
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=IMrF
-----END PGP SIGNATURE-----