587856eb89
It is a common confusion that --yes should also accept new signing keys; it really shouldn't, so document that explicitly. Also explain how to tell XBPS about trusted keys.