If you use sign your git commits, and then rebase a pull request with your commits in GitHub GUI, it drops the signature from the rebased commits, and they'll have unverified badge on them.