Variable: package-check-signature

package-check-signature is a customizable variable defined in package.el.gz.

Value

allow-unsigned

Documentation

Non-nil means to check package signatures when installing.

More specifically the value can be:
- nil: package signatures are ignored.
- allow-unsigned: install a package even if it is unsigned, but
  if it is signed, we have the key for it, and OpenGPG is
  installed, verify the signature.
- t: accept a package only if it comes with at least one verified signature.
- all: same as t, except when the package has several signatures,
  in which case we verify all the signatures.

This also applies to the "archive-contents" file that lists the contents of the archive.

This variable was added, or its default value changed, in Emacs 27.1.

Probably introduced at or before Emacs version 24.4.

Source Code

;; Defined in /usr/src/emacs/lisp/emacs-lisp/package.el.gz
(defcustom package-check-signature 'allow-unsigned
  "Non-nil means to check package signatures when installing.
More specifically the value can be:
- nil: package signatures are ignored.
- `allow-unsigned': install a package even if it is unsigned, but
  if it is signed, we have the key for it, and OpenGPG is
  installed, verify the signature.
- t: accept a package only if it comes with at least one verified signature.
- `all': same as t, except when the package has several signatures,
  in which case we verify all the signatures.

This also applies to the \"archive-contents\" file that lists the
contents of the archive."
  :type '(choice (const nil :tag "Never")
                 (const allow-unsigned :tag "Allow unsigned")
                 (const t :tag "Check always")
                 (const all :tag "Check all signatures"))
  :risky t
  :version "27.1")