sopv-gpgpv: an implementation of the verification-only subset of the Stateless OpenPGP CLI using gpgv as a backend

Daniel Kahn Gillmor dkg at fifthhorseman.net
Tue Aug 6 20:49:38 CEST 2024


On Tue 2024-08-06 14:01:36 -0400, Daniel Kahn Gillmor via Gnupg-users wrote:
> Or, if you really want the "sop verify" and "sop inline-verify"
> interface to support some sensible "at least N signatures" semantic, feel
> free to open a suggestion in the sop issue tracker:
>
>   https://gitlab.com/dkg/openpgp-stateless-cli/-/issues/new

I've gone ahead and opened an issue to keep track of this, because this
isn't the first time this question has come up about more sophisticated
OpenPGP signature verification for sop:

    https://gitlab.com/dkg/openpgp-stateless-cli/-/issues/104

I'd love to hear feedback there from implementers and from operators of
infrastructure that depend on signature verification.

        --dkg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 324 bytes
Desc: not available
URL: <https://lists.gnupg.org/pipermail/gnupg-users/attachments/20240806/d2532328/attachment.sig>


More information about the Gnupg-users mailing list