sopv-gpgpv: an implementation of the verification-only subset of the Stateless OpenPGP CLI using gpgv as a backend
Werner Koch
wk at gnupg.org
Tue Jul 23 14:36:41 CEST 2024
Hi!
while talking about gpgv, let me remind you about the new
--assert-signer option which can be used as a replacement for gpgv.
--assert-signer fpr_or_file
This option checks whether at least one valid signature on file has
been made with the specified key. The key is either specified as a
fingerprint or a file listing fingerprints. The fingerprint must be
given or listed in compact format (no colons or spaces in between).
This option can be given multiple times and each fingerprint is
checked against the signing key as well as the corresponding
primary key. If fpr_or_file specifies a file, empty lines are
ignored as well as all lines starting with a hash sign. With this
option gpg is guaranteed to return with an exit code of 0 if and
only if a signature has been encountered, is valid, and the key
matches one of the fingerprints given by this option.
This option is available since 2.4.1.
Salam-Shalom,
Werner
--
The pioneers of a warless world are the youth that
refuse military service. - A. Einstein
-------------- next part --------------
A non-text attachment was scrubbed...
Name: openpgp-digital-signature.asc
Type: application/pgp-signature
Size: 247 bytes
Desc: not available
URL: <https://lists.gnupg.org/pipermail/gnupg-users/attachments/20240723/75402228/attachment.sig>
More information about the Gnupg-users
mailing list