From fb2be58e604e18003ddd9a6bf1fbdf5819235ef4 Mon Sep 17 00:00:00 2001
From: Shivaram Lingamneni <slingamn@cs.stanford.edu>
Date: Sun, 2 Jan 2022 17:29:10 -0500
Subject: [PATCH] fix instructions for signing the checksum file

---
 DEVELOPING.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/DEVELOPING.md b/DEVELOPING.md
index 18741ba5..6f04fe9f 100644
--- a/DEVELOPING.md
+++ b/DEVELOPING.md
@@ -55,7 +55,7 @@ Ergo vendors all dependencies using `go mod vendor`. To update a dependency, or
 1. Commit the new changelog and constants change.
 1. Tag the release with `git tag --sign v0.0.0 -m "Release v0.0.0"` (`0.0.0` replaced with the real ver number).
 1. Build binaries using `make release`
-1. Sign the checksums file with `gpg --detach-sig --default-key`
+1. Sign the checksums file with `gpg --sign --detach-sig --local-user <fingerprint>`
 1. Smoke-test a built binary locally
 1. Point of no return: `git push origin master --tags` (this publishes the tag; any fixes after this will require a new point release)
 1. Publish the release on GitHub (Releases -> "Draft a new release"); use the new tag, post the changelog entries, upload the binaries, the checksums file, and the signature of the checksums file