It was reported to me that some users always get an error when trying to sign a key through Kleopatra in VS-NfD mode.
There error turns out to be:
gpg: digest algorithm 'SHA1' may not be used in --compliance=de-vs mode gpg: signing failed: Invalid digest algorithm
I would prefer it if GnuPG automatically would select a compliant cert-digest-algo instead of failing.
Alternatively we need to add "cert-digest-algo SHA256" to the vsnfd.prf