Update GnuPG replacement

Update the concept document based on work done.

Signed-off-by: Frédéric Danis <frederic.danis@collabora.com>

content/concepts/gnupg-replacement.md

@@ -114,6 +114,8 @@ Starting with Apertis v2022dev2, `Flatpak` is also able to use `Ed25519` cryptog
 
 `GnuPG` is used by `gmime` to encrypt, decrypt, sign and verify messages with `Multipurpose Internet Mail Extension`.
 
+Starting with Apertis v2022dev3, the ability to encrypt, decrypt, sign and verify messages has been disabled in `gmime`.
+
 ## OSTree
 
 `GnuPG` is used by `OSTree`:
@@ -128,6 +130,8 @@ See [Debian manpage](https://manpages.debian.org/buster/volume-key/volume_key.8.
 
 `GnuPG` is used by `volume-key` to encrypt or decrypt the file used to store extracted "secrets" used for volume encryption (for example keys or passphrases).
 
+Starting with Apertis v2022dev3, key escrow support has been disabled in `libblockdev` library, allowing to remove `volume-key`.
+
 # Approach
 
 The following alternative replacements have been considered:
@@ -302,8 +306,8 @@ In addition Sequoia, by being GPL-2.0 licensed, is not suitable to be directly l
 
 The approach could then be:
 
-1. ship `sqv` on target images and symlink it as `gpgv` so that it gets transparently picked up by APT
-1. patch `apertis-archive-keyring` to install the .asc directly, avoiding any build-dependency on GnuPG
+1. ship `sqv` on target images and create a new `sequoia-gpgv` wrapper which sends the correct status codes so that it gets transparently picked up by APT
+1. patch `apertis-archive-keyring` to avoid any runtime dependency on GnuPG
 1. disable OpenPGP support from `OSTree`, replacing it with the use of Ed25519 signatures
    - this will drop the ability to assert trust when pulling from third party OpenPGP-signed repositories, which has never been a use-case of interest in Apertis
 1. disable OpenPGP support from `Flatpak`, replacing it with the use of Ed25519 signatures