diff --git a/content/security/gpg-key.md b/content/security/gpg-key.md
index fc83b9c..689a985 100644
--- a/content/security/gpg-key.md
+++ b/content/security/gpg-key.md
@@ -81,6 +81,13 @@ you can sign the provided message. If the signed message is valid, Codeberg can
 4. Copy the output including the `-----BEGIN PGP SIGNATURE-----` and `-----END PGP SIGNATURE-----`.
 5. Paste it into the large text box and click the **Verify** button.
 
+{% admonition "note" %}
+
+Due to differences in how the command shell behaves on Windows, the quotation marks around the token and the space before the pipe
+symbol must be omitted from the command; otherwise, they will be included in the signed data and the signature verification will fail.
+
+{% endadmonition %}
+
 ## Telling Git about your GPG key
 
 You will need to tell Git about your key and have it sign new commits for you.