It should be pretty easy to have a basic flow so CI created images can be signed, and verified on pull. Not sure what algorithm(s) / tools we should use? Accessibility is key, both IRL and in CI, and it needs to all work well cross-platform.

• Add public key (and key type?) to metadata (let's b64 it or something)
• Search for a signature file corresponding to each package (.sig or appropriate to the format)
• Generate checksum / validate signature against public key on pull