Since grml is a security hardened operating system when I upgraded some packages on it to 0.8 version level status I was told the packages could be compromised since their signatures couldn't be verified. What part or parts of the upgrade process did I omit?