thanks for the review, Guillem. i think what differentiates minisign from the list of programs in that mail is that we actually want to use it to v...

trixie is no longer applicable, you are correct.

There was a thread in debian-devel some time ago about alternative signature types support, but I don't think minisign was covered there, but I thi...

Given that dpkg-source will not include the actual signatures in the source package, this looks for now like a uscan-type local only thing, so I mi...

Please say "OpenPGP ASCII armored", and while many of the current references in options and similar call it pgp, I also think it might be better to...

I'd appreciate if these diagnostics could preserve the type of signature being involved, to avoid confusion on usage (say if upstream provides mult...

I don't think this will interpolate the value as desired (calling a method instead of using a member).

This is using a branch, then conditionals on OpenPGP implementations, while the verifyv sub is instead placing the OpenPGP as the cascading fallbac...

Idem about -p vs -P.

Why slurp the public key, when the file could be passed via -p?

Please do not say gpg when we are talking about OpenPGP....

I don't think this is going to be a common signature type, so placing it in Recommends or even Suggests might be better, given that the code is aut...

thanks, merged as 0ed980a9, thus closing this.

thanks, merged as c7417509 into main, thus closing.