On Fri, 24 Oct 2025 15:03, Jakob Bohm said: > Note that the above user visible output (not the exit code) pretends > to report success,
Which is tehcnically correct becuase the signature is valid. The assertion simply fails and thus the exit code is guaranteed to be failure and you will also see a ASSERT_SIGNER status line if the assertion is true. > --status-fd is a particularly horrible interface for shell scripting use, > as it requires setting up an additional temporary file and overly complex awk is the tool of choice ;-) I would suggest to use libgpgme, gpgme-tools, or gpgme-json for all applications. No need for --assert-signer in this case because this can be easily checked without. Salam-Shalom, Werner -- The pioneers of a warless world are the youth that refuse military service. - A. Einstein
openpgp-digital-signature.asc
Description: PGP signature
_______________________________________________ Gnupg-users mailing list [email protected] https://lists.gnupg.org/mailman/listinfo/gnupg-users
