Skip to content
This repository has been archived by the owner on Jul 24, 2023. It is now read-only.
/ vpypi Public archive

CLI tool to verify GPG signature for Python packages on PyPI

License

Notifications You must be signed in to change notification settings

orsinium-archive/vpypi

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

vpypi

vpypi is a CLI tool to verify GPG signature for Python packages on PyPI.

Installation

python3 -m pip install --user vpypi

Usage

$ python3.9 -m vpypi flask==1.1.1
{
  "created": "2019-07-08",
  "fingerprint": "AD253D8661D175D001F462D77A1C87E3F5BC42A8",
  "key_id": "7A1C87E3F5BC42A8",
  "name": "Flask-1.1.1-py2.py3-none-any.whl",
  "status": "signature valid",
  "username": "David Lord <davidism@gmail.com>"
}
{
  "created": "2019-07-08",
  "fingerprint": "AD253D8661D175D001F462D77A1C87E3F5BC42A8",
  "key_id": "7A1C87E3F5BC42A8",
  "name": "Flask-1.1.1.tar.gz",
  "status": "signature valid",
  "username": "David Lord <davidism@gmail.com>"
}

About

CLI tool to verify GPG signature for Python packages on PyPI

Topics

Resources

License

Stars

Watchers

Forks

Languages