flatpak-build-sign - Sign an application or runtime
build-sign [OPTION...] LOCATION ID [BRANCH]
Signs the commit for a specified application or runtime in a local repository.
LOCATION is the location of the repository. ID is the name of the application,
or runtime if --runtime is specified. If BRANCH is not specified, it is
assumed to be "master".
Applications can also be signed during build-export, but it is sometimes useful
to add additional signatures later.
The following options are understood:
Show help options and exit.
Sign the commit with this GPG key. This option
can be used multiple times.
GPG Homedir to use when looking for
Sign a runtime instead of an app.
The architecture to use.
Print debug information during command
Print OSTree debug information during command
Print version information and exit.
$ flatpak build-sign --gpg-sign=D8BA6573DDD2418027736F1BC33B315E53C1E9D6