ci: remove fonts

.github/workflows/build-release.yaml

@@ -22,11 +22,6 @@ jobs:
         with:
           fetch-depth: 0
 
-      - name: Install Fonts
-        run: |
-          sudo apt-get update
-          sudo apt-get install -y fonts-liberation
-
       - name: Install Rust
         uses: dtolnay/rust-toolchain@stable
 
@@ -40,7 +35,7 @@ jobs:
           tar -xJf typst.tar.xz --strip-components=1 -C /usr/local/bin/ typst-x86_64-unknown-linux-musl/typst
           typst --version
 
-      - name: Install Typst & md-pdf (Rust)
+      - name: Install md-pdf (Rust)
         run: |
           cargo install md-pdf
           echo "$HOME/.cargo/bin" >> $GITHUB_PATH

README.md

@@ -1,3 +1,16 @@
+---
+title: "PIS"
+subtitle: "Policy for Internal Security"
+#logo: "path/to/logo.png"
+author: "Rémi Heredero "
+language: "en"
+tags: ["gpg", "ssh", "x509", "YubiKey", "security"]
+toc: false
+template: "simple"
+#date: "2026-01-23"
+#version: "0.0.1"
+---
+
 # Policy for Internal Security
 This repo describes my P.I.S. (**P**olicy for **I**nternal **S**ecurity).
 You'll find my personal guidelines for SSH / GPG on YubiKey and how to configure and create a key / certificate.
@@ -195,14 +208,6 @@ This creates the file `id_ed25519_sk-keyring-cert.pub` that is the certificate t
 
 ---
 
-# x509
-
-## Master YubiKey
-I create a certificate in PIV slot 9a with Yubico authenticator. This CA would be used as a Root CA for my server.
-TODO fix with XCA
-
----
-
 # Troubleshooting
 ## GPG
 Sometimes, for unknown (for me) reason, you need to kill the gpg-agent to be able to use the YubiKey again.