Description
File signatures can be created and verified in an OpenSSH-compatible format from the command line. This tool is useful when users want an alternative workflow to ssh-keygen -Y for signing releases, documents, or artifacts. Private keys and trusted signer policies must be protected because signature trust depends on them.