Hi!

I'm currently trying to build 3.0.7 as a package for Arch Linux. It seems a new key was used for signing this release, but this is not mentioned in the release notes, nor can the key be found on any keyserver yet.

Please sign the new key 763629FEC8788FC35128B5F6EE029D1E5EB40300 with the old key 2CF6E0B51AAF73F09B1C21174D1DA68C88710E60 and upload the new key (plus signature) to the keyservers, so a chain of trust can be established.
In the current situation I feel not comfortable packaging this version.

In case you want to make sure that the key ends up on (all) key servers, you can use this script:
https://paste.xinu.at/axX1B9w/