@example
$ [fetch|wget] http://www.gocheese.cypherpunks.ru/download/gocheese-@value{VERSION}.tar.zst
-$ [fetch|wget] http://www.gocheese.cypherpunks.ru/download/gocheese-@value{VERSION}.tar.zst.sig
-$ gpg --verify gocheese-@value{VERSION}.tar.zst.sig gocheese-@value{VERSION}.tar.zst
+$ [fetch|wget] http://www.gocheese.cypherpunks.ru/download/gocheese-@value{VERSION}.tar.zst.@{asc,sig@}
+[verify signature]
$ zstd -d < gocheese-@value{VERSION}.tar.zst | tar xf -
$ cd gocheese-@value{VERSION}
$ go build -mod=vendor
@end example
@include download.texi
-
-You @strong{have to} verify downloaded tarballs integrity and
-authenticity to be sure that you retrieved trusted and untampered
-software. @url{https://www.gnupg.org/, GNU Privacy Guard} is used
-for that purpose.
-
-For the very first time it is necessary to get signing public key and
-import it. It is provided below, but you should check alternative
-resources.
-
-@verbatim
-pub rsa2048/0xCD5CD01F55343D88 2019-12-08 [SC]
- 9B27 640B A784 37EC 6D4A CA6C CD5C D01F 5534 3D88
-uid GoCheese releases <gocheese@cypherpunks.ru>
-@end verbatim
-
-@itemize
-
-@item
-@example
-$ gpg --auto-key-locate dane --locate-keys gocheese at cypherpunks dot ru
-$ gpg --auto-key-locate wkd --locate-keys gocheese at cypherpunks dot ru
-@end example
-
-@item
-@verbatiminclude ../PUBKEY.asc
-
-@end itemize
+@include integrity.texi
You can obtain development source code with
@command{git clone git://git.cypherpunks.ru/gocheese.git}