This is to be used in adversarial situations in which a user's signingKey leaks or is being held by some custodian who turns out to be a bad actor.
In a situation such as this, the signingKey may be used to rotate both the signingKey and recoveryKey.
From: https://atproto.com/specs/did-plc#account-recovery
Seems to suggest the signing key is all that’s needed to change the keys for a user? I was expecting it to say the recovery key could be used for that (which only I have).
This is to be used in adversarial situations in which a user's signingKey leaks or is being held by some custodian who turns out to be a bad actor.
In a situation such as this, the signingKey may be used to rotate both the signingKey and recoveryKey.
From: https://atproto.com/specs/did-plc#account-recovery
Seems to suggest the signing key is all that’s needed to change the keys for a user? I was expecting it to say the recovery key could be used for that (which only I have).