Description
Provides an OpenPGP backend for RPM using Sequoia PGP, supporting package signature handling and verification workflows. It is useful for RPM-based packaging systems that need modern OpenPGP support.
Package signature handling is part of the software trust chain. Keep keys, policies, and verification settings controlled, and avoid bypassing signature failures without investigation.