Description
Verifies OpenPGP signatures so users and scripts can confirm that files or messages match a trusted signing certificate. It is useful for checking downloads, release artifacts, and signed data in simple workflows.
Signature verification only proves what the selected key can prove. Confirm key fingerprints through a trusted channel, and do not treat an unknown valid signature as automatic proof of safety.