fix(git-node): improve release tag signature verification

[aduh95]

Add support for non-RSA keys, and for keys with several identities.

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 80.06%. Comparing base (cb53a80) to head (410e1ac).

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #969   +/-   ##
=======================================
  Coverage   80.06%   80.06%           
=======================================
  Files          39       39           
  Lines        4645     4645           
=======================================
  Hits         3719     3719           
  Misses        926      926           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[targos]

Changes SGTM but I think it will still not match in my case.

The output of the verify-tag command looks like that:

gpg: Signature made Wed Aug 27 23:12:59 2025 CEST
gpg:                using RSA key 8FCCA13FEF1D0C2E91008E09770F7A9A5AE15600
gpg: Good signature from "Michaël Zasso (Targos) <[email protected]>" [ultimate]