File 'repomd.xml' from repository 'Copr repo for onedriver owned by jstaf' is unsigned.

[lgaudreau]

After installing the Copr repository in OpenSUSE Tumbleweed with no errors or warnings and trying to install the package, this warning is returned:

Warning: File 'repomd.xml' from repository 'Copr repo for onedriver owned by jstaf' is unsigned.

There is an option to proceed with the installation with the warning that there is no guarantee the file was not modified or compromised.

Operating System: OpenSUSE Tumbleweed version 20240502

Steps to reproduce:

1. install Copr repository:

sudo zypper addrepo -g -r https://copr.fedorainfracloud.org/coprs/jstaf/onedriver/repo/opensuse-tumbleweed/jstaf-onedriver-opensuse-tumbleweed.repo onedriver
sudo zypper --gpg-auto-import-keys refresh

2. Install onedriver:

sudo zypper install onedriver
Warning: File 'repomd.xml' from repository 'Copr repo for onedriver owned by jstaf' is unsigned.

Note: Signing data enables the recipient to verify that no modifications
occurred after the data were signed. Accepting data with no, wrong or
unknown signature can lead to a corrupted system and in extreme cases even
to a system compromise.

Note: File 'repomd.xml' is the repositories master index file. It ensures
the integrity of the whole repo.

Warning: We can't verify that no one meddled with this file, so it might not
be trustworthy anymore! You should not continue unless you know it's safe.

File 'repomd.xml' from repository 'Copr repo for onedriver owned by jstaf' is unsigned.
Continue? [yes/no] (no):

Expected behaviour: repomd.xml file is signed