Code review comment for lp:~jani/ubuntu-system-image/skip-gpg-verification

We mostly need this on regular devices that do not (yet) point to the official servers.

Is the threat a user being unknowingly lead into running with this flag and potentially compromising their install?