-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

For nm.debian.org, at 2024-12-03:

For the past 5 months, I have worked with NoisyCoil on various packaging tasks in the Debian Rust team.

They have been packaging some new rust CLI tools, such as broot, du-dust, dysk and procs.
Furthermore, they helped a great deal with some transitions within the team, such as the
bindgen and image transition while preparing others and doing routine updates for other team 
packages.

During my work with noisycoil they were always pleasant to interact with and quickly picked up the
teams' workflow while delivering excellent contributions.

For this past work, NoisyCoil sent mails using the email address noisycoil@tutanota.com
which is the one they're using on nm.debian.org, and they signed their work and
email using a GPG key with fingerprint 50CF C9D5 E5BD E1CB CA57  FD7B 6DF0 08E7 0F28 CBF7.

I've made sure that they are able to decrypt encrypted messages sent to this key
and that they're able to sign messages with the same key.

Due to the long-term interactions we had, I'm convinced that NoisyCoil as they
present themselves on nm.debian.org is the rightful owner of both email
noisycoil@tutanota.com and GPG key 50CF C9D5 E5BD E1CB CA57  FD7B 6DF0 08E7 0F28 CBF7.
-----BEGIN PGP SIGNATURE-----

iHUEARYIAB0WIQQUWTv/Sl6/b+DpcW7svtu2B7myvgUCZ095+QAKCRDsvtu2B7my
vm0PAPsGr4wMtgrTyfYlGy/66SlG0mPjDg2hyzWTghYiE1u7WQEAmvskynwbRj1d
pM+Z4r/z95n5TwUM8LQFs6wInbaxpgQ=
=BcmC
-----END PGP SIGNATURE-----