add-google-cloud-ops-agent-repo.sh pushes key to deprecated apt-key trusted.gpg keystore

[sbconslt]

add-google-cloud-ops-agent-repo.sh as currently delivered invokes apt-key add - to store the gpg key for package signing, which stores the key to /etc/apt/trusted.gpg, a deprecated procedure.

Newly on Ubuntu 22.04, the presence of this signing key in this location throws a deprecation Warning during apt-get update. This is a risk to the automated orchestration of updates. (apt-get update && apt-get dist-upgrade -y that we sometimes emplace, for example, is blocked by it as the first command appears to the shell to not exit 0.)

I produced the following diff of the change that relocates the signing key to its own file /etc/apt/trusted.gpg.d/google-cloud-ops-agent.gpg:

224c224
<         | ${DRY_RUN} apt-key add -
---
>         > /etc/apt/trusted.gpg.d/google-cloud-ops-agent.gpg

I do not locate the add-google-cloud-ops-agent-repo.sh file in this repository, though, so have not formed a PR.

Please consider updating the install scripting accordingly. Thanks.

[braydonk]

Hi @sbconslt, we have been tracking this internally and are working on it.

[kakugirai]

Hi @braydonk , is there any update on when we might expect to see progress on this feature?