[FiloSottile]

The system does not work like this.

To put it shortly: it's not Keybase that verifies that `liz` is a certain Facebook account. `liz` generates cryptographic proofs and publish them on Facebook, you get them and verify them. Keybase.io can't switch anything, unless also `liz`'s FB (and Twitter, and GH...) is compromised and the proofs switched.

This is a common and understandable misconception with Keybase threat-model, they should probably try even harder to put it up front.

What OP says is that she does not trust the way the tool to generate these proofs is distributed.