Is it normal for Qubes to try to update templates from unsigned repositories?

Updating whonix-workstation-17
Refreshing package info
Refreshing packages.
Fail to refresh InRelease: Index of /debian/ all InRelease from gpgv:/var/lib/apt/lists/partial/apt.supercable.onl_debian_dists_all_InRelease
Refreshed.
W:GPG error: Index of /debian/ all InRelease: The following signatures couldn’t be verified because the public key is not available: NO_PUBKEY 23358905FE294D01, E:The repository ‘Index of /debian/ all InRelease’ is not signed.

I’m not saying “help, I think I’ve been hacked” at least not yet.

But have I been?

Did you change anything in the /etc/apt/sources.list or /etc/apt/sources.list.d/* files in the template?
What’s the content of your files there?

probably

i just reinstalled the template

Unlikely.
You probably wanted to install schildichat, but forgot to add the
signing key to your system at /usr/share/keyrings.

I never presume to speak for the Qubes team.
When I comment in the Forum I speak for myself.

You’re a genius.

That’s exactly it.

How did you know?

Did I previously post something about schildichat or are you Qubes remote viewer psychic? :crazy_face: