What is the nature and description of the request?

When using OpenShift Gitops, with an ApplicationSet using the git generator -

https://argocd-applicationset.readthedocs.io/en/stable/Generators-Git/

It does not validate the git commits are GPG signed. However for ArgoCD Applications, it does validate GPG signatures.

Why does the customer need this? (List the business requirements here)

Due to our industry we are expected to used signed git commits and verify them

How would the customer like to achieve this? (List the functional requirements here)

ApplicationSet Git Generator should validate GPG signed git commits, like ArgoCD does for Applications

For each functional requirement listed in question 4, specify how Red Hat and the customer

Can test to confirm the requirement is successfully implemented.
Create an ApplicationSet with git generator and point at a git repo with and without GPG signatures - first should pass, second should fail.