Git commits and tags that I author are signed with my SSH key. Run the following commands to configure an allowed_signers file for git, which will allow signature verification using my key (but use my actual email address instead of the template below):

$ git config --global gpg.ssh.allowedSignersFile ~/.ssh/allowed_signers
$ echo '<my first name>@<this website> namespaces="git" sk-ssh-ed25519@openssh.com AAAAGnNrLXNzaC1lZDI1NTE5QG9wZW5zc2guY29tAAAAIEx2gTcZjjf8ZXKAmdzVeasLoBdAKy0YiYpBcJ0wqF8nAAAADHNzaDpuaXRyb2tleQ==' >> ~/.ssh/allowed_signers

For the cautious, this key can also be found on my Codeberg account. Once configured, commands like git verify-commit HEAD should print something like the following:

Good "git" signature for <my email> with ED25519-SK key SHA256:KXfgK2P2ikjvhNd2aA3jF9swsVjBNV7/ahhHKwTqoTA