Thanks to everyone for talking through the details.
On Fri 2019-03-22 15:47:23 +0100, Nicolas Vigier wrote:
> With the current version of the extension, I don't know if it makes a
> big difference. However if there was some plan to improve the extension
> to make it verify gpg signatures, then that could be a big difference.
I think i agree with Nicolas here. I was working under the
misunderstanding that the extension did verify the OpenPGP signatures,
apologies for not following this closely enough earlier.
--dkg
