Resigning .deb packages

view story

http://ubuntuforums.org – I'd like to support the following workflow: 1) development group creates .deb package and signs with development gpg key. 2) development group can deploy to development APT repository. 3) QA group can test this package and if it passes tests can be "promoted" to production. 4) QA resigns the same .deb package (that has been installed on development machines from the development APT repository) with a "production" gpg key. 5) now, and only now, it can be deployed to a production APT repository and installed on production machines. (In fact, the workflow would be more c (Hardware)