verify_signatures(spec, digests, signatures)
public
Extracts the certificate chain from the spec and calls #verify to ensure the
signatures and certificate chain is valid according to the policy..
# File lib/rubygems/security/policy.rb, line 283
def verify_signatures spec, digests, signatures
chain = spec.cert_chain.map do |cert_pem|
OpenSSL::X509::Certificate.new cert_pem
end
verify chain, nil, digests, signatures, spec.full_name
true
end