From 4da38c86ddfb75da35a0524abf6dc6d7edef5764 Mon Sep 17 00:00:00 2001
From: Chad Dougherty <crd477@icloud.com>
Date: Tue, 11 Mar 2025 13:12:46 -0400
Subject: [PATCH] add a note about signify compatibility

based on the discussion in #59
---
 index.html | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/index.html b/index.html
index 3b89974..71efe18 100644
--- a/index.html
+++ b/index.html
@@ -228,6 +228,16 @@ minisign -V [-H] [-x sig_file] [-p pubkey_file | -P pubkey] [-o] [-q] -m file
                 attacks).
             </p>
 
+            <p>
+                OpenBSD's <a href="https://man.openbsd.org/signify">signify(1)</a>
+                is conceptually similar to minisign.  Minisign creates signatures
+                that can be verified by signify, but signatures created by signify
+                <b>cannot</b> be verified by minisign because minisign expects
+                the trusted comment section to be present.  Trusted comments are
+                important to describe what has been signed in addition to the fact
+                that something has been signed.
+            </p>
+
             <h2>
                 <a
                     id="compilation--installation"