diff --git a/PluginBuilder/AccountSettings.cs b/PluginBuilder/AccountSettings.cs
new file mode 100644
index 0000000..d8f02d7
--- /dev/null
+++ b/PluginBuilder/AccountSettings.cs
@@ -0,0 +1,37 @@
+using System.ComponentModel.DataAnnotations;
+
+namespace PluginBuilder
+{
+    public class AccountSettings
+    {
+        [Display(Name = "Github username")]
+        public string Github { get; set; }
+
+        [Display(Name = "Nostr Npub key")]
+        public string? Nostr { get; set; }
+
+        [Display(Name = "Twitter handle")]
+        public string? Twitter { get; set; }
+
+        [Display(Name = "Email address")]
+        public string? Email { get; set; }
+        public List<PgpKey> PgpKeys { get; set; }
+    }
+
+    public class PgpKey
+    {
+        public string KeyBatchId { get; set; }
+        public string KeyUserId { get; set; }
+        public string Title { get; set; }
+        public string PublicKey { get; set; }
+        public string KeyId { get; set; }
+        public int BitStrength { get; set; }
+        public bool IsMasterKey { get; set; }
+        public bool IsEncryptionKey { get; set; }
+        public string Algorithm { get; set; }
+        public DateTime CreatedDate { get; set; }
+        public DateTime AddedDate { get; set; }
+        public long ValidDays { get; set; }
+        public int Version { get; set; }
+    }
+}
diff --git a/PluginBuilder/Components/MainNav/Default.cshtml b/PluginBuilder/Components/MainNav/Default.cshtml
index 2978db2..875eda3 100644
--- a/PluginBuilder/Components/MainNav/Default.cshtml
+++ b/PluginBuilder/Components/MainNav/Default.cshtml
@@ -1,3 +1,4 @@
+@using PluginBuilder.Enums
 @inject Microsoft.AspNetCore.Identity.SignInManager<Microsoft.AspNetCore.Identity.IdentityUser> SignInManager
 @model PluginBuilder.Components.MainNav.MainNavViewModel
 
@@ -130,6 +131,16 @@
                     </li>
                 </ul>
             </li>
+            @if (ViewData.IsActiveCategory(typeof(AccountNavPages)))
+            {
+                <li class="nav-item nav-item-sub">
+                    <a id="SectionNav-@AccountNavPages.Settings.ToString()" class="nav-link @ViewData.ActivePageClass(AccountNavPages.Settings)" asp-controller="Account" asp-action="AccountDetails" text-translate="true">Account Settings</a>
+                </li>
+                <li class="nav-item nav-item-sub">
+                    <a id="SectionNav-@AccountNavPages.Keys.ToString()" class="nav-link @ViewData.ActivePageClass(AccountNavPages.Keys)" asp-controller="Account" asp-action="AccountKeySettings" text-translate="true">Key Settings</a>
+                </li>
+                <vc:ui-extension-point location="user-nav" model="@Model" />
+            }
         </ul>
     }
 </nav>
diff --git a/PluginBuilder/Constants/WellKnownTempData.cs b/PluginBuilder/Constants/WellKnownTempData.cs
new file mode 100644
index 0000000..2ca490a
--- /dev/null
+++ b/PluginBuilder/Constants/WellKnownTempData.cs
@@ -0,0 +1,7 @@
+namespace PluginBuilder.Constants;
+
+public class WellKnownTempData
+{
+    public const string SuccessMessage = nameof(SuccessMessage);
+    public const string ErrorMessage = nameof(ErrorMessage);
+}
diff --git a/PluginBuilder/Controllers/AccountController.cs b/PluginBuilder/Controllers/AccountController.cs
index 217d1b1..9fc4bd4 100644
--- a/PluginBuilder/Controllers/AccountController.cs
+++ b/PluginBuilder/Controllers/AccountController.cs
@@ -1,8 +1,7 @@
 using Microsoft.AspNetCore.Authorization;
 using Microsoft.AspNetCore.Identity;
 using Microsoft.AspNetCore.Mvc;
-using PluginBuilder.DataModels;
-using PluginBuilder.ModelBinders;
+using PluginBuilder.Constants;
 using PluginBuilder.Services;
 using PluginBuilder.ViewModels;
 using PluginBuilder.ViewModels.Account;
@@ -12,14 +11,17 @@ namespace PluginBuilder.Controllers
     [Authorize]
     public class AccountController : Controller
     {
+        private readonly PgpKeyService _pgpKeyService;
         private DBConnectionFactory ConnectionFactory { get; }
         private UserManager<IdentityUser> UserManager { get; }
 
         public AccountController(
             DBConnectionFactory connectionFactory,
+            PgpKeyService pgpKeyService,
             UserManager<IdentityUser> userManager)
         {
             ConnectionFactory = connectionFactory;
+            _pgpKeyService = pgpKeyService;
             UserManager = userManager;
         }
 
@@ -60,5 +62,66 @@ public async Task<IActionResult> AccountDetails(AccountDetailsViewModel model)
             TempData[TempDataConstant.SuccessMessage] = "Account details updated successfully";
             return RedirectToAction(nameof(AccountDetails));
         }
+
+        [HttpPost("saveaccountkeys")]
+        public async Task<IActionResult> SaveAccountPgpKeys(AccountKeySettingsViewModel model)
+        {
+            try
+            {
+                await _pgpKeyService.AddNewPGGKeyAsync(model.PublicKey, model.Title, UserManager.GetUserId(User));
+                TempData[WellKnownTempData.SuccessMessage] = "Account key added successfully";
+                return RedirectToAction("AccountKeySettings");
+            }
+            catch (Exception ex)
+            {
+                ModelState.AddModelError("", ex.Message);
+                return RedirectToAction("AccountKeySettings");
+            }
+        }
+
+
+        [HttpGet("accountkeysettings")]
+        public async Task<IActionResult> AccountKeySettings()
+        {
+            await using var conn = await ConnectionFactory.Open();
+            string userId = UserManager.GetUserId(User);
+            var accountSettings = await conn.GetAccountDetailSettings(userId) ?? new AccountSettings();
+
+            var pgpKeyViewModels = accountSettings?.PgpKeys?
+            .GroupBy(k => k.KeyBatchId)
+            .Select(g => new PgpKeyViewModel
+            {
+                BatchId = g.FirstOrDefault()?.KeyBatchId,
+                Title = g.FirstOrDefault()?.Title,
+                KeyUserId = g.FirstOrDefault()?.KeyUserId,
+                KeyId = g.FirstOrDefault(k => k.IsMasterKey)?.KeyId,
+                Subkeys = string.Join(", ", g.Where(k => !k.IsMasterKey).Select(k => k.KeyId)),
+                AddedDate = g.FirstOrDefault()?.AddedDate
+            })
+            .ToList();
+            return View(pgpKeyViewModels);
+        }
+
+        [HttpPost("deleteaccountkey/{batchId}")]
+        public async Task<IActionResult> DeleteAccountPgpKey(string batchId)
+        {
+            await using var conn = await ConnectionFactory.Open();
+            string userId = UserManager.GetUserId(User);
+            var accountSettings = await conn.GetAccountDetailSettings(userId);
+            if (accountSettings == null)
+            {
+                TempData[WellKnownTempData.ErrorMessage] = "Account settings not found";
+                return RedirectToAction("AccountKeySettings");
+            }
+            int removedCount = accountSettings.PgpKeys?.RemoveAll(k => k.KeyBatchId == batchId) ?? 0;
+            if (removedCount == 0)
+            {
+                TempData[WellKnownTempData.ErrorMessage] = "Invalid batch key";
+                return RedirectToAction("AccountKeySettings");
+            }
+            await conn.SetAccountDetailSettings(accountSettings, userId);
+            TempData[WellKnownTempData.SuccessMessage] = "Account key deleted successfully";
+            return RedirectToAction("AccountKeySettings");
+        }
     }
 }
diff --git a/PluginBuilder/Controllers/PluginController.cs b/PluginBuilder/Controllers/PluginController.cs
index b9e60e5..c2c2986 100644
--- a/PluginBuilder/Controllers/PluginController.cs
+++ b/PluginBuilder/Controllers/PluginController.cs
@@ -8,6 +8,8 @@
 using Newtonsoft.Json;
 using PluginBuilder.Components.PluginVersion;
 using PluginBuilder.Events;
+using Microsoft.AspNetCore.Identity;
+using PluginBuilder.Constants;
 
 namespace PluginBuilder.Controllers
 {
@@ -17,17 +19,23 @@ public class PluginController : Controller
     {
         public PluginController(
             DBConnectionFactory connectionFactory,
+            UserManager<IdentityUser> userManager,
             BuildService buildService,
-            EventAggregator eventAggregator)
+            EventAggregator eventAggregator,
+            PgpKeyService pgpKeyService)
         {
             ConnectionFactory = connectionFactory;
             BuildService = buildService;
             EventAggregator = eventAggregator;
+            _pgpKeyService = pgpKeyService;
+            UserManager = userManager;
         }
 
         private DBConnectionFactory ConnectionFactory { get; }
         private BuildService BuildService { get; }
         private EventAggregator EventAggregator { get; }
+        private UserManager<IdentityUser> UserManager { get; }
+        private readonly PgpKeyService _pgpKeyService;
 
         [HttpGet("settings")]
         public async Task<IActionResult> Settings(
@@ -190,8 +198,8 @@ public async Task<IActionResult> Build(
            long buildId)
         {
             await using var conn = await ConnectionFactory.Open();
-            var row = await conn.QueryFirstOrDefaultAsync<(string manifest_info, string build_info, string state, DateTimeOffset created_at, bool published, bool pre_release)>(
-                "SELECT manifest_info, build_info, state, created_at, v.ver IS NOT NULL, v.pre_release FROM builds b " +
+            var row = await conn.QueryFirstOrDefaultAsync<(string manifest_info, string build_info, string state, DateTimeOffset created_at, bool published, bool pre_release, bool isbuildsigned)>(
+                "SELECT manifest_info, build_info, state, created_at, v.ver IS NOT NULL, v.pre_release, isbuildsigned FROM builds b " +
                 "LEFT JOIN versions v ON b.plugin_slug=v.plugin_slug AND b.id=v.build_id " +
                 "WHERE b.plugin_slug=@pluginSlug AND id=@buildId " +
                 "LIMIT 1",
@@ -217,6 +225,7 @@ public async Task<IActionResult> Build(
             vm.ManifestInfo = NiceJson(row.manifest_info);
             vm.BuildInfo = buildInfo?.ToString(Formatting.Indented);
             vm.DownloadLink = buildInfo?.Url;
+            vm.IsBuildSigned = row.isbuildsigned;
             vm.State = row.state;
             vm.CreatedDate = (DateTimeOffset.UtcNow - row.created_at).ToTimeAgo();
             vm.Commit = buildInfo?.GitCommit?.Substring(0, 8);
@@ -234,6 +243,45 @@ public async Task<IActionResult> Build(
             return View(vm);
         }
 
+
+        [HttpPost("builds/sign/{buildId}")]
+        public async Task<IActionResult> SignPluginBuild(PluginApprovalStatusUpdateViewModel model,
+            [ModelBinder(typeof(PluginSlugModelBinder))] PluginSlug pluginSlug,long buildId)
+        {
+            await using var conn = await ConnectionFactory.Open();
+            string userId = UserManager.GetUserId(User);
+            var accountSettings = await conn.GetAccountDetailSettings(userId);
+            if (accountSettings == null || accountSettings.PgpKeys == null || !accountSettings.PgpKeys.Any())
+            {
+                TempData[WellKnownTempData.ErrorMessage] = "Kindly add new GPG Keys to proceed with plugin action";
+                return RedirectToAction(nameof(Build), new { pluginSlug, buildId });
+            }
+            var manifest_info = await conn.QueryFirstOrDefaultAsync<string>(
+                "SELECT manifest_info FROM builds b WHERE b.plugin_slug=@pluginSlug AND id=@buildId LIMIT 1",
+                new
+                {
+                    pluginSlug = pluginSlug.ToString(),
+                    buildId
+                });
+            List<string> publicKeys = accountSettings.PgpKeys.Select(key => key.PublicKey).ToList();
+            string manifestShasum = _pgpKeyService.ComputeSHA256(NiceJson(manifest_info));
+            var validateSignature = _pgpKeyService.VerifyPgpMessage(model.ArmoredMessage, manifestShasum, publicKeys);
+            if (!validateSignature.success)
+            {
+                TempData[WellKnownTempData.ErrorMessage] = validateSignature.response;
+                return RedirectToAction(nameof(Build), new { pluginSlug, buildId });
+            }
+            await conn.ExecuteAsync(
+            "UPDATE builds SET isbuildsigned = true WHERE plugin_slug = @pluginSlug AND id = @buildId",
+            new
+            {
+                pluginSlug = pluginSlug.ToString(),
+                buildId
+            });
+            TempData[WellKnownTempData.SuccessMessage] = $"{model.PluginSlug} signed and verified successfully";
+            return RedirectToAction(nameof(Build), new { pluginSlug, buildId });
+        }
+
         private string? NiceJson(string? json)
         {
             if (json is null)
diff --git a/PluginBuilder/Data/Scripts/12.PgpBuildSigning.sql b/PluginBuilder/Data/Scripts/12.PgpBuildSigning.sql
new file mode 100644
index 0000000..5a63471
--- /dev/null
+++ b/PluginBuilder/Data/Scripts/12.PgpBuildSigning.sql
@@ -0,0 +1,5 @@
+ALTER TABLE builds
+ADD COLUMN isbuildsigned BOOLEAN DEFAULT false;
+
+UPDATE builds
+SET isbuildsigned = true;
diff --git a/PluginBuilder/Enums/AccountNavPages.cs b/PluginBuilder/Enums/AccountNavPages.cs
new file mode 100644
index 0000000..eb0a212
--- /dev/null
+++ b/PluginBuilder/Enums/AccountNavPages.cs
@@ -0,0 +1,6 @@
+namespace PluginBuilder.Enums;
+
+public enum AccountNavPages
+{
+    Keys, Settings
+}
diff --git a/PluginBuilder/Program.cs b/PluginBuilder/Program.cs
index 2e5a8a8..75c9fde 100644
--- a/PluginBuilder/Program.cs
+++ b/PluginBuilder/Program.cs
@@ -91,7 +91,7 @@ public void AddServices(IConfiguration configuration, IServiceCollection service
         services.AddHostedService<DockerStartupHostedService>();
         services.AddHostedService<AzureStartupHostedService>();
         services.AddHostedService<PluginHubHostedService>();
-
+        services.AddTransient<PgpKeyService>();
         services.AddSingleton<DBConnectionFactory>();
         services.AddSingleton<BuildService>();
         services.AddSingleton<ProcessRunner>();
diff --git a/PluginBuilder/Services/PgpKeyService.cs b/PluginBuilder/Services/PgpKeyService.cs
new file mode 100644
index 0000000..1a06451
--- /dev/null
+++ b/PluginBuilder/Services/PgpKeyService.cs
@@ -0,0 +1,166 @@
+using Microsoft.AspNetCore.Identity;
+using Org.BouncyCastle.Asn1.Cmp;
+using Org.BouncyCastle.Bcpg.OpenPgp;
+using PluginBuilder.ViewModels;
+using System.Security.Cryptography;
+using System.Text;
+using System.Text.RegularExpressions;
+
+namespace PluginBuilder.Services;
+
+public class PgpKeyService
+{
+    private DBConnectionFactory ConnectionFactory { get; }
+    private UserManager<IdentityUser> UserManager { get; }
+    public PgpKeyService(DBConnectionFactory connectionFactory,
+            UserManager<IdentityUser> userManager)
+    {
+        UserManager = userManager;
+        ConnectionFactory = connectionFactory;
+    }
+
+    public async Task AddNewPGGKeyAsync(string publicKey, string title, string userId)
+    {
+        await using var conn = await ConnectionFactory.Open();
+        var accountSettings = await conn.GetAccountDetailSettings(userId) ?? new AccountSettings();
+
+        // Batch ID to group master key and sub keys belonging to a public key
+        string batchId = Guid.NewGuid().ToString();
+        List<PgpKey> pgpKeys = new List<PgpKey>();
+        using var keyStream = new MemoryStream(Encoding.ASCII.GetBytes(publicKey));
+        using var inputStream = PgpUtilities.GetDecoderStream(keyStream);
+        var pgpPubKeyBundle = new PgpPublicKeyRingBundle(inputStream);
+
+        var emailRegex = new Regex(@"[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}");
+        bool emailMatches = false;
+        var userRecord = await UserManager.FindByIdAsync(userId);
+        foreach (PgpPublicKeyRing keyRing in pgpPubKeyBundle.GetKeyRings())
+        {
+            foreach (PgpPublicKey key in keyRing.GetPublicKeys())
+            {
+                var userIds = key.GetUserIds();
+                string extractedEmails = string.Empty;
+                if (userIds.Any(userIdString =>
+                {
+                    var match = emailRegex.Match(userIdString);
+                    if (match.Success)
+                    {
+                        extractedEmails = match.Value; 
+                        return match.Value.Equals(userRecord?.Email, StringComparison.OrdinalIgnoreCase);
+                    }
+                    return false;
+                }))
+                {
+                    emailMatches = true;
+                }
+                if (!emailMatches)
+                {
+                    continue;
+                }
+                var pgpKey = new PgpKey
+                {
+                    KeyBatchId = batchId,
+                    Title = title,
+                    PublicKey = publicKey,
+                    KeyId = key.KeyId.ToString("X"),
+                    BitStrength = key.BitStrength,
+                    IsEncryptionKey = key.IsEncryptionKey,
+                    IsMasterKey = key.IsMasterKey,
+                    Algorithm = key.Algorithm.ToString(),
+                    AddedDate = DateTime.Now,
+                    CreatedDate = key.CreationTime,
+                    ValidDays = key.GetValidSeconds(),
+                    Version = key.Version,
+                    KeyUserId = string.Join(", ", userIds)
+                };
+                pgpKeys.Add(pgpKey);
+            }
+        }
+        accountSettings.PgpKeys = pgpKeys;
+        await conn.SetAccountDetailSettings(accountSettings, userId);
+    }
+
+    public string ComputeSHA256(string input)
+    {
+        using SHA256 sha256 = SHA256.Create();
+        byte[] inputBytes = Encoding.UTF8.GetBytes(input);
+        byte[] hashBytes = sha256.ComputeHash(inputBytes);
+        return BitConverter.ToString(hashBytes).Replace("-", "").ToLowerInvariant();
+    }
+
+    private static PgpPublicKey LoadPublicKey(string publicKeyString)
+    {
+        try
+        {
+            using var keyStream = new MemoryStream(Encoding.ASCII.GetBytes(publicKeyString));
+            using var inputStream = PgpUtilities.GetDecoderStream(keyStream);
+            var pgpPubKeyBundle = new PgpPublicKeyRingBundle(inputStream);
+            return pgpPubKeyBundle.GetKeyRings()
+                .Cast<PgpPublicKeyRing>()
+                .SelectMany(keyRing => keyRing.GetPublicKeys().Cast<PgpPublicKey>())
+                .FirstOrDefault(key => key.IsMasterKey);
+        }
+        catch (Exception)
+        {
+            return null;
+        }
+    }
+
+    public (bool success, string response) VerifyPgpMessage(string armoredMessage, string manifestShasum, List<string> publicKeys)
+    {
+        try
+        {
+            foreach (var publicKey in publicKeys)
+            {
+                PgpPublicKey pgpPublicKey = LoadPublicKey(publicKey);
+                if (pgpPublicKey == null)
+                {
+                    continue;
+                }
+                using var messageStream = new MemoryStream(Encoding.UTF8.GetBytes(armoredMessage));
+                using var decoderStream = PgpUtilities.GetDecoderStream(messageStream);
+                var pgpFactory = new PgpObjectFactory(PgpUtilities.GetDecoderStream(messageStream));
+                var pgpObject = pgpFactory.NextPgpObject();
+                if (pgpObject is PgpCompressedData compressedData)
+                {
+                    pgpFactory = new PgpObjectFactory(compressedData.GetDataStream());
+                    pgpObject = pgpFactory.NextPgpObject();
+                }
+                if (pgpObject is PgpOnePassSignatureList onePassSignatureList)
+                {
+                    var onePassSignature = onePassSignatureList[0];
+                    onePassSignature.InitVerify(pgpPublicKey);
+                    pgpObject = pgpFactory.NextPgpObject();
+                    if (pgpObject is PgpLiteralData literalData)
+                    {
+                        using Stream literalDataStream = literalData.GetInputStream();
+                        using var actualMessageStream = new MemoryStream();
+                        int ch;
+                        while ((ch = literalDataStream.ReadByte()) >= 0)
+                        {
+                            onePassSignature.Update((byte)ch);
+                            actualMessageStream.WriteByte((byte)ch);
+                        }
+                        var message = Encoding.UTF8.GetString(actualMessageStream.ToArray());
+                        if (!message.Contains(manifestShasum))
+                        {
+                            continue;
+                        }
+                    }
+                    var signatureList = (PgpSignatureList)pgpFactory.NextPgpObject();
+                    var signature = signatureList[0];
+                    if (onePassSignature.Verify(signature))
+                    {
+                        return (true, "Signature verified successfully");
+                    }
+                }
+            }
+            return (false, "Unable to validate signature message with account public keys");
+        }
+        catch (Exception)
+        {
+
+            throw;
+        }
+    }
+}
diff --git a/PluginBuilder/ViewDataExtensions.cs b/PluginBuilder/ViewDataExtensions.cs
index 7e91d74..7f74955 100644
--- a/PluginBuilder/ViewDataExtensions.cs
+++ b/PluginBuilder/ViewDataExtensions.cs
@@ -8,7 +8,7 @@ public static class ViewDataExtensions
         private const string ACTIVE_CATEGORY_KEY = "ActiveCategory";
         private const string ACTIVE_PAGE_KEY = "ActivePage";
         private const string ACTIVE_ID_KEY = "ActiveId";
-        private const string ActivePageClass = "active";
+        private const string ACTIVE_CLASS = "active";
 
         public static void SetActivePage<T>(this ViewDataDictionary viewData, T activePage, string title = null, string activeId = null)
     where T : IConvertible
@@ -35,17 +35,49 @@ public static void SetActiveCategory(this ViewDataDictionary viewData, string ac
             viewData[ACTIVE_CATEGORY_KEY] = activeCategory;
         }
 
+        public static string ActivePageClass<T>(this ViewDataDictionary viewData, T page, object id = null)
+            where T : IConvertible
+        {
+            return ActivePageClass(viewData, page.ToString(), page.GetType().ToString(), id);
+        }
+
+        public static string ActivePageClass(this ViewDataDictionary viewData, string page, string category, object id = null)
+        {
+            return IsActivePage(viewData, page, category, id);
+        }
+
+        public static string ActivePageClass<T>(this ViewDataDictionary viewData, IEnumerable<T> pages, object id = null) where T : IConvertible
+        {
+            return IsActivePage(viewData, pages, id);
+        }
+
         public static string IsActivePage<T>(this ViewDataDictionary viewData, T page, object id = null)
           where T : IConvertible
         {
             return IsActivePage(viewData, page.ToString(), page.GetType().ToString(), id);
         }
 
+        public static bool IsActiveCategory(this ViewDataDictionary viewData, string category, object id = null)
+        {
+            if (!viewData.ContainsKey(ACTIVE_CATEGORY_KEY))
+                return false;
+            var activeId = viewData[ACTIVE_ID_KEY];
+            var activeCategory = viewData[ACTIVE_CATEGORY_KEY]?.ToString();
+            var categoryMatch = category.Equals(activeCategory, StringComparison.InvariantCultureIgnoreCase);
+            var idMatch = id == null || activeId == null || id.Equals(activeId);
+            return categoryMatch && idMatch;
+        }
+
+        public static bool IsActiveCategory<T>(this ViewDataDictionary viewData, T category, object id = null)
+        {
+            return IsActiveCategory(viewData, category.ToString(), id);
+        }
+
         public static string IsActivePage<T>(this ViewDataDictionary viewData, IEnumerable<T> pages, object id = null)
             where T : IConvertible
         {
-            return pages.Any(page => IsActivePage(viewData, page.ToString(), page.GetType().ToString(), id) == ActivePageClass)
-                ? ActivePageClass
+            return pages.Any(page => IsActivePage(viewData, page.ToString(), page.GetType().ToString(), id) == ACTIVE_CLASS)
+                ? ACTIVE_CLASS
                 : null;
         }
 
@@ -60,7 +92,7 @@ public static string IsActivePage(this ViewDataDictionary viewData, string page,
             var activeCategory = viewData[ACTIVE_CATEGORY_KEY]?.ToString();
             var categoryAndPageMatch = (category == null || activeCategory.Equals(category, StringComparison.InvariantCultureIgnoreCase)) && page.Equals(activePage, StringComparison.InvariantCultureIgnoreCase);
             var idMatch = id == null || activeId == null || id.Equals(activeId);
-            return categoryAndPageMatch && idMatch ? ActivePageClass : null;
+            return categoryAndPageMatch && idMatch ? ACTIVE_CLASS : null;
         }
     }
 }
diff --git a/PluginBuilder/ViewModels/AccountKeySettingsViewModel.cs b/PluginBuilder/ViewModels/AccountKeySettingsViewModel.cs
new file mode 100644
index 0000000..92c1a73
--- /dev/null
+++ b/PluginBuilder/ViewModels/AccountKeySettingsViewModel.cs
@@ -0,0 +1,25 @@
+namespace PluginBuilder.ViewModels;
+
+
+public class AccountKeySettingsViewModel
+{
+    public string PublicKey { get; set; }
+    public string Title { get; set; }
+}
+
+public class PgpKeyViewModel
+{
+    public string BatchId { get; set; }
+    public string Title { get; set; }
+    public string KeyUserId { get; set; }
+    public string KeyId { get; set; }
+    public string Subkeys { get; set; }
+    public DateTime? AddedDate { get; set; }
+}
+
+public class PluginApprovalStatusUpdateViewModel
+{
+    public string PluginSlug { get; set; }
+    public string ArmoredMessage { get; set; }
+    public string ManifestShasum { get; set; }
+}
diff --git a/PluginBuilder/ViewModels/BuildViewModel.cs b/PluginBuilder/ViewModels/BuildViewModel.cs
index 73e6954..7a81b2e 100644
--- a/PluginBuilder/ViewModels/BuildViewModel.cs
+++ b/PluginBuilder/ViewModels/BuildViewModel.cs
@@ -18,5 +18,6 @@ public class BuildViewModel
         public string GitRef { get; internal set; }
         public string RepositoryLink { get; internal set; }
         public string Logs { get; set; }
+        public bool IsBuildSigned { get; set; }
     }
 }
diff --git a/PluginBuilder/Views/Account/AccountDetails.cshtml b/PluginBuilder/Views/Account/AccountDetails.cshtml
index 0fe1784..323bf3e 100644
--- a/PluginBuilder/Views/Account/AccountDetails.cshtml
+++ b/PluginBuilder/Views/Account/AccountDetails.cshtml
@@ -1,7 +1,8 @@
+@using PluginBuilder.Enums
 @model AccountDetailsViewModel
 @{
     Layout = "_Layout";
-    ViewData.SetActivePage("Account Settings");
+    ViewData.SetActivePage(AccountNavPages.Settings, "Account Settings");
 }
 
 <h2 class="mt-1 mb-4">@ViewData["Title"]</h2>
diff --git a/PluginBuilder/Views/Account/AccountKeySettings.cshtml b/PluginBuilder/Views/Account/AccountKeySettings.cshtml
new file mode 100644
index 0000000..aada091
--- /dev/null
+++ b/PluginBuilder/Views/Account/AccountKeySettings.cshtml
@@ -0,0 +1,110 @@
+@using PluginBuilder.Enums
+@using PluginBuilder.ViewModels
+@model List<PgpKeyViewModel>
+@{
+    Layout = "_Layout";
+    ViewData.SetActivePage(AccountNavPages.Keys, "Account Key Settings");
+}
+
+<div class="d-sm-flex align-items-center justify-content-between">
+    <h2 class="mb-0">
+        @ViewData["Title"]
+    </h2>
+
+    <button type="button" class="btn btn-primary mt-md-0 mt-2" data-bs-toggle="modal" data-bs-target="#generateKeyModal">New GPG Key</button>
+</div>
+
+@if (Model != null && Model.Any())
+{
+    <div class="row mt-4">
+        @foreach (var key in Model)
+        {
+            <div class="col-md-12">
+                <div class="card mb-4">
+                    <div class="card-body d-md-flex justify-content-between">
+                        <div class="d-flex flex-md-row flex-column">
+                            <div class="d-md-flex align-items-center justify-content-center px-md-3 px-0 mb-md-0 mb-2">
+                                <span>
+                                    <svg height="32" aria-hidden="true" viewBox="0 0 24 24" version="1.1" width="32" data-view-component="true" class="octicon octicon-key">
+                                        <path d="M16.75 8.5a1.25 1.25 0 1 0 0-2.5 1.25 1.25 0 0 0 0 2.5Z"></path>
+                                        <path d="M15.75 0a8.25 8.25 0 1 1-2.541 16.101l-1.636 1.636a1.744 1.744 0 0 1-1.237.513H9.25a.25.25 0 0 0-.25.25v1.448a.876.876 0 0 1-.256.619l-.214.213a.75.75 0 0 1-.545.22H5.25a.25.25 0 0 0-.25.25v1A1.75 1.75 0 0 1 3.25 24h-1.5A1.75 1.75 0 0 1 0 22.25v-2.836c0-.464.185-.908.513-1.236l7.386-7.388A8.249 8.249 0 0 1 15.75 0ZM9 8.25a6.733 6.733 0 0 0 .463 2.462.75.75 0 0 1-.168.804l-7.722 7.721a.25.25 0 0 0-.073.177v2.836c0 .138.112.25.25.25h1.5a.25.25 0 0 0 .25-.25v-1c0-.966.784-1.75 1.75-1.75H7.5v-1c0-.966.784-1.75 1.75-1.75h1.086a.25.25 0 0 0 .177-.073l1.971-1.972a.75.75 0 0 1 .804-.168A6.75 6.75 0 1 0 9 8.25Z"></path>
+                                    </svg>
+                                </span>
+                                @* <vc:icon symbol="key" /> *@
+                            </div>
+                            <div>
+                                <span class="card-title d-block mb-2" style="font-weight: bold;">@key.Title</span>
+                                <span class="d-block mb-1"><strong>User:</strong> @key.KeyUserId</span>
+                                <span class="d-block mb-1"><strong>Key ID:</strong> @key.KeyId</span>
+                                <span class="d-block mb-1"><strong>Sub Key(s):</strong> @key.Subkeys</span>
+                            </div>
+
+                        </div>
+                        <div class="d-md-flex mt-md-0 mt-2 align-items-center justify-content-center">
+                            <button type="button" class="btn btn-outline-danger" data-bs-toggle="modal" data-bs-target="#confirmDeleteModal">
+                                Delete
+                            </button>
+
+                            <div class="modal fade" id="confirmDeleteModal" tabindex="-1" aria-labelledby="confirmDeleteModalLabel" aria-hidden="true">
+                                <div class="modal-dialog">
+                                    <div class="modal-content">
+                                        <div class="modal-header">
+                                            <h5 class="modal-title" id="confirmDeleteModalLabel">Confirm Deletion</h5>
+                                            <button type="button" class="btn-close" data-bs-dismiss="modal" aria-label="Close"></button>
+                                        </div>
+                                        <div class="modal-body">
+                                            Are you sure you want to delete this key?
+                                        </div>
+                                        <div class="modal-footer">
+                                            <button type="button" class="btn btn-secondary" data-bs-dismiss="modal">Cancel</button>
+                                            <form method="post" asp-action="DeleteAccountPgpKey" asp-controller="Account" asp-route-batchId="@key.BatchId">
+                                                <button type="submit" class="btn btn-danger">Delete</button>
+                                            </form>
+                                        </div>
+                                    </div>
+                                </div>
+                            </div>
+                        </div>
+                    </div>
+
+                    <div class="card-footer text-muted text-end" style="background-color: #e9ecef; border-top: none;">
+                        <small>Added on <strong>@string.Format("{0:MMMM dd, yyyy}", key.AddedDate)</strong></small>
+                    </div>
+                </div>
+            </div>
+        }
+    </div>
+}
+else
+{
+    <p>No available keys. Click on the button to create a new PGP Key</p>
+}
+
+<div class="modal fade" id="generateKeyModal" tabindex="-1" aria-labelledby="pgpKeyModalLabel-approve" aria-hidden="true">
+    <div class="modal-dialog modal-lg">
+        <div class="modal-content">
+            <form asp-action="SaveAccountPgpKeys" method="post">
+                <div class="modal-header">
+                    <h5 class="modal-title" id="pgpKeyModalLabel-approve">Add new PGP key</h5>
+                    <button type="button" class="btn-close" data-bs-dismiss="modal" aria-label="Close"></button>
+                </div>
+                <div class="modal-body">
+                    <div class="mb-3">
+                        <label for="KeyTitle" class="form-label">Title</label>
+                        <input type="text" class="form-control" id="KeyTitle" name="Title" placeholder="Enter title" required />
+                    </div>
+                    <div class="mb-3">
+                        <label for="pgpKey-approve" class="form-label">GPG Public Key</label>
+                        <textarea id="pgpKey-approve" name="PublicKey" class="form-control" rows="5"
+                                  placeholder="It should start with `-----BEGIN PGP PUBLIC KEY BLOCK-----`&#13;&#10;&#13;&#10;&#13;&#10;and end with `-----END PGP PUBLIC KEY BLOCK-----`."
+                                  required></textarea>
+                    </div>
+                </div>
+                <div class="modal-footer">
+                    <button type="button" class="btn btn-secondary" data-bs-dismiss="modal">Close</button>
+                    <button type="submit" class="btn btn-primary">Add PGP Key</button>
+                </div>
+            </form>
+        </div>
+    </div>
+</div>
diff --git a/PluginBuilder/Views/Plugin/Build.cshtml b/PluginBuilder/Views/Plugin/Build.cshtml
index 62cd7be..39a41b9 100644
--- a/PluginBuilder/Views/Plugin/Build.cshtml
+++ b/PluginBuilder/Views/Plugin/Build.cshtml
@@ -4,6 +4,15 @@
 	ViewData.SetActivePage(PluginNavPages.Dashboard, $"Build {Model.FullBuildId.BuildId}", Model.FullBuildId.ToString());
 }
 
+<div class="alert alert-warning alert-dismissible mb-4" role="alert">
+    <button type="button" class="btn-close" data-bs-dismiss="alert" aria-label="Close">
+        <vc:icon symbol="close" />
+    </button>
+    <h5 class="alert-heading">Important notice about plugin build release</h5>
+    <p class="mb-0">To enable release for a plugin build, authors will have to sign the shasum plugin manifest.</p>
+    <p class="mb-0">To sign off a build release, compute SHA256 of the content of the plugin manifest. You can then sign off the shasum string with your PGP private key and then submit the armored message for completiony.</p>
+</div>
+
 <div class="d-sm-flex align-items-center justify-content-between">
 	<div class="d-sm-flex align-items-center">
 		<h2 class="mb-0">
@@ -25,9 +34,18 @@
             case "uploaded":
                 if (Model.Version is null || Model.Version?.PreRelease is true)
                 {
-                    <form asp-action="Release" asp-route-pluginSlug="@Model.FullBuildId.PluginSlug" asp-route-version="@Model.Version.Version" method="post">
-                        <button type="submit" name="command" value="release" class="btn btn-primary">Release</button>
-                    </form>
+                    if (Model.IsBuildSigned)
+                    {
+                        <form asp-action="Release" asp-route-pluginSlug="@Model.FullBuildId.PluginSlug" asp-route-version="@Model.Version.Version" method="post">
+                            <button type="submit" name="command" value="release" class="btn btn-primary">Release</button>
+                        </form>
+                    }
+                    else
+                    {
+                        <button type="button" class="btn btn-primary" data-bs-toggle="modal" data-bs-target="#signBuildModal">
+                            Sign Build Release
+                        </button>
+                    }
 					<a asp-action="CreateBuild" asp-route-pluginSlug="@Model.FullBuildId.PluginSlug" asp-route-copyBuild="@Model.FullBuildId.BuildId" class="btn btn-secondary">Retry</a>
                 }
                 else if (Model.Version?.Published is true)
@@ -49,6 +67,32 @@
     </div>
 </div>
 
+
+<div class="modal fade" id="signBuildModal" tabindex="-1" aria-labelledby="signBuildModalLabel" aria-hidden="true">
+    <div class="modal-dialog">
+        <div class="modal-content">
+            <form asp-action="SignPluginBuild" asp-route-pluginSlug="@Model.FullBuildId.PluginSlug" asp-route-buildId="@Model.FullBuildId.BuildId" method="post">
+                <div class="modal-header border-0">
+                    <h4 class="modal-title mb-0" id="pgpKeyModalLabel-reject">Sign Build for Release</h4>
+                    <button type="button" class="btn-close" data-bs-dismiss="modal" aria-label="Close"></button>
+                </div>
+                <div class="modal-body">
+                    <div class="form-group">
+                        <label for="pgpKey-approve">PGP Signature message</label>
+                        <textarea id="pgpKey-approve" name="ArmoredMessage" class="form-control" rows="5"
+                                  placeholder="It should start with `-----BEGIN PGP MESSAGE-----`&#13;&#10;&#13;&#10;&#13;&#10;and end with `-----END PGP MESSAGE-----`." required></textarea>
+                    </div>
+                </div>
+                <div class="modal-footer">
+                    <button type="button" class="btn btn-secondary" data-bs-dismiss="modal">Close</button>
+                    <button type="submit" class="btn btn-primary">Sign</button>
+                </div>
+            </form>
+        </div>
+    </div>
+</div>
+
+
 <table class="table">
     @if (Model.Version != null)
     {