Sorry if it is a bit off-topic. After reading an article about rogue CA's:
https://www.theregister.com/2021/11/19/web_trust_certificates/I wonder if there is any advantage of using certificate pinning in the process of pkg_add / sysupgrade / pkg_* while updating OpenBSD packages.
-- Fabio http://nabundapode.com.br/
