PyTorch and the PyPI supply chain

Gentoo has also recently started adding the ability to verify upstream tarballs against upstream public keys and signatures, which is better than nothing, but is pointedly next to nothing. If the package in question gets its code from a git repo with signed commits, there's nothing to check that. If the package *itself* lives in a signed git repo, you can't reuse the download-checking key management (it actively fights you if you do) and have to figure out through trial and error how to manually fetch and manage GPG keys for a non-root system account.