helping someone set up passwordstore.org, my favorite password manager
it's basically pgp encrypted text files stored in git
so they need a gpg key
"wait so why do i have to give it my e-mail address?" they asked, concerned about privacy
🤔 huh.
now thinking pgp would be easier to implement/understand/use if the e-mail specific stuff was in a totally separate layer or wrapper from asymmetric keys and what you can do with them