Notepad++ introduces GPG signature for enhanced authentication verification

Buzz

Ngày cập nhật gần nhất: 15/4/2026

According to Bleepingcomputer, the latest update, Notepad++ 7.6.5, has just been released with the addition of GPG signatures. Users can now verify the authenticity of the downloaded program.

Recalling last month, Notepad++ developer Don Ho reported challenges in renewing the code signing certificate, as the certificate issued had expired. He faced issues registering a new certificate under the name 'Notepad++' since it did not exist as an organization or company. Consequently, code signing certificates were in short supply. The developer mentioned that Notepad++ will no longer be verified in the future.

While many users agree that code signing certificates are excessively priced, some are concerned that without a certificate, users cannot verify the legality of the Notepad++ package and ensure it is not maliciously altered.

Today, Notepad++ developers have just announced that in the released Notepad++ 7.6.5 update, the program will undergo verification using GPG. This allows users to authenticate the downloaded program.

To verify the downloaded program, users will be prompted to download the public key of the release on the download page and enter the key into GPG. For example, in this release, the public key can be found at the link named GPG Notepad++ Public Key on the download page.

After entering the public key, you'll need to download the corresponding signature file. Each download file (installer, ZIP file, etc.) will have its own GPG signature that will be used to verify the file as shown below.

If using a program like Gpg4Win, users should download the signature file in the same location as the Notepad++ download file. After downloading, double-click on the .sig file, and it will automatically open Gpg4Win to verify the validity of the file with the same name.

As seen in the image below, when you double-click on the file npp.7.6.5.Installer.exe.sig, it will automatically utilize Gpg4Win to verify the signature of the executable file npp.7.6.5.Installer.exe.

Mytour recommends downloading the program directly from the source to avoid downloading malicious counterfeit programs. By using this process, it adds an extra layer of user protection by allowing users to verify the signature of the file before execution.

To download the latest version of Notepad++ to your machine and install it, visit here: Download Notepad++

In case you don't want to install, you can download Notepad++ Portable from here.

Utilizing shortcuts in Notepad++ will enhance your efficiency, saving time. Refer to the list of Notepad++ shortcut keys here for quick reference.

Frequently Asked Questions

What new feature does Notepad++ 7.6.5 introduce for user security?

Notepad++ 7.6.5 introduces GPG signatures, allowing users to verify the authenticity of the downloaded program. This added security feature enables users to authenticate files, ensuring they are not maliciously altered before installation.

How can users verify the authenticity of Notepad++ downloads?

To verify Notepad++ downloads, users need to download the public key from the download page, enter it into GPG, and then download the corresponding signature file for their specific installer. This process helps ensure the file's integrity.

What challenges did Notepad++ face regarding code signing certificates?

Notepad++ faced significant challenges in renewing its code signing certificate due to expiration issues. The developer struggled to register a new certificate since Notepad++ was not recognized as an official organization, leading to a shortage of certificates for verification.

Why is it important to download Notepad++ directly from the source?

Downloading Notepad++ directly from the official source is crucial to avoid malicious counterfeit programs. This practice helps ensure that users receive a legitimate, secure version of the software, minimizing the risk of harmful alterations.

Mytour's content is for customer care and travel encouragement only, and we are not responsible.

For errors or inappropriate content, please contact us at: [email protected]