The "mender-artifact validate" command returns success even though the Artifact is signed and it does not seem to check the signature.
My expectation was for it to fail unless I pass the "-k" option if the Artifact is signed. If the command is working as intended we should update the description what is validated when.
mender-artifact validate my-container-update-1.0-signed.mender
Artifact file 'my-container-update-1.0-signed.mender' validated successfully
$ mender-artifact read my-container-update-1.0-signed.mender
Signature: signed; verification using provided key failed
Compatible devices: '[my-device-type]'
Depends on one of artifact(s): 
Depends on one of group(s):