<noinclude>{{Header}}</noinclude>'''This chapter is recommended for better security, but is not strictly required.''' (See [[Trust]].)

{{always_verify_signatures_reminder}}

'''1.''' Verify the chosen tag to build.

Note: Replace with tag you want to build.

{{CodeSelect|code=
git verify-tag {{VersionNew}}-stable
}}

'''2.''' Check the output of the verification step.

{{GnuPG-Success}}

<pre>
gpg: Good signature
</pre>

This output might be followed by a warning as follows. 

{{GnuPG-Warning}}

{{gpg_signature_timestamp}}

'''2.''' Verify the git commit to build. <ref>
It is advisable to verify the signature of the git commit as well. By convention, git tags should point to signed git commits. Beginning from git tag 9.6 and above. ([https://forums.whonix.org/t/security-git-general-verification-verifying-whonix-submodules/513 forum discussion])
</ref>

Note: Replace <code>{{VersionNew}}</code> with the actual git tag being verified.

{{CodeSelect|code=
git verify-commit {{VersionNew}}-stable^{commit}
}}

'''3.''' Check the output of the verification step.

'''4.''' Done.<noinclude>
= Footnotes =
<references />
{{Footer}}
[[Category:MultiWiki]]
</noinclude>