Just in case it's useful to more people, I'm promoting this so it's not embedded in a thread: a description of how #Debian handles #PGP keys and why it's not vulnerable to the current SKS keyserver signature flooding.
https://blog.liw.fi/posts/2019/07/02/debian_and_the_sks_signature_flooding_attack/