不太清楚怎么验证文件和sig签名文件[Feature Request]

[linda-02]

🥰 需求描述

我已从您在 GitHub 上发布的项目下载了这些文件，并注意到其中包含一个用于签名验证的 .sig 文件。但是，我找不到验证过程所需的公钥。您能否告诉我在哪里可以找到公钥，以便我可以验证下载文件的完整性？

🧐 解决方案

我想要验证文件 和签名文件，不太清楚公钥在哪里获取
了解的是 ，没有公钥好像无法验证，不知道正常情况下，像release发布的项目，有文件和sig文件，下载后这2个文件我应该如何验证呢？
gpg --verify file.sig file

📝 补充信息

No response

[Issues-translate-bot]

Bot detected the issue body's language is not English, translate it automatically.

---

Title: Not sure how to verify the file and sig signature file [Feature Request]

🥰 Description of requirements

I've downloaded the files from the project you posted on GitHub and noticed that it contains a .sig file for signature verification. However, I cannot find the public key required for the verification process. Can you tell me where I can find the public key so I can verify the integrity of the downloaded file?

🧐 Solution

I want to verify the file and sign the file, but I’m not sure where to get the public key.
What I understand is that it seems that it cannot be verified without a public key. I don’t know that under normal circumstances, like a release release project, there are files and sig files. How should I verify these two files after downloading?
gpg --verify file.sig file

📝 Supplementary information

No response