diff --git a/.github/workflows/mldsa.yml b/.github/workflows/mldsa.yml
index 083248063..81a4c829f 100644
--- a/.github/workflows/mldsa.yml
+++ b/.github/workflows/mldsa.yml
@@ -104,3 +104,20 @@ jobs:
         run: |
           cargo clean
           cargo bench --no-run
+
+  stack-size:
+        runs-on: ubuntu-latest
+        defaults:
+          run:
+            shell: bash
+            working-directory: libcrux-ml-dsa
+        steps:
+            - uses: actions/checkout@v4
+        
+            - name: 📚 Check stack sizes
+              continue-on-error: true
+              run: |
+                cargo clean
+                chmod +x ./stack-sizes.sh
+                ./stack-sizes.sh verify_87
+
diff --git a/libcrux-ml-dsa/examples/verify_87.rs b/libcrux-ml-dsa/examples/verify_87.rs
new file mode 100644
index 000000000..c30aeb2ce
--- /dev/null
+++ b/libcrux-ml-dsa/examples/verify_87.rs
@@ -0,0 +1,24 @@
+use libcrux_ml_dsa::ml_dsa_87;
+use rand::{rngs::OsRng, RngCore};
+
+fn random_array<const L: usize>() -> [u8; L] {
+    let mut rng = OsRng;
+    let mut seed = [0; L];
+    rng.try_fill_bytes(&mut seed).unwrap();
+    seed
+}
+
+fn main() {
+    let key_generation_seed = random_array();
+    let signing_randomness = random_array();
+    let message = random_array::<1023>();
+    let context = b"";
+
+    let keypair = ml_dsa_87::generate_key_pair(key_generation_seed);
+    let signature = ml_dsa_87::sign(&keypair.signing_key, &message, context, signing_randomness)
+        .expect("Rejection sampling failure probability is < 2⁻¹²⁸");
+
+    for _i in 0..100_000 {
+        let _ = ml_dsa_87::verify(&keypair.verification_key, &message, context, &signature);
+    }
+}
diff --git a/libcrux-ml-dsa/stack-sizes.sh b/libcrux-ml-dsa/stack-sizes.sh
new file mode 100755
index 000000000..4880a691c
--- /dev/null
+++ b/libcrux-ml-dsa/stack-sizes.sh
@@ -0,0 +1,111 @@
+#!/bin/bash
+
+# This script runs `cargo stack-sizes` to obtain stack frame sizes for
+# functions in the crate. It
+#  - temporarily installs the cargo stack-sizes tool,
+#  - temporarily reconfigure the crate to the requirements of cargo
+#    stack-sizes (installs a minimal Rust nightly toolchain and sets a
+#    bogus `version` in Cargo.toml),
+#  - runs the stack-sizes tool on a given example.
+#
+# The script will then print all stack frame sizes it collects in
+# increasing order and will exit normally if the FRAME_SIZE_LIMIT is
+# not exceeded by any of them. If the limit is exceeded the script
+# will error and print the name of the offending function.
+#
+# Before exiting, the script will restore the previous state of the
+# crate and uninstall the stack-sizes tool.
+#
+# Usage:
+#
+#    ./stack-sizes.sh <example>
+#
+# where <example> is an example program as you would run it with cargo
+# run --example <example>.
+
+set -euo pipefail
+
+FRAME_SIZE_LIMIT=25344
+
+function setup {
+    cargo install stack-sizes@=0.4
+    
+    if [ -f "./rust-toolchain.toml" ]; then
+        if [ -f "./rust-toolchain.toml.bak" ]; then
+            echo "Error: An old rust-toolchain.toml.bak was found."
+        fi
+        mv "./rust-toolchain.toml" "./rust-toolchain.toml.bak"
+    fi
+    {
+        echo "[toolchain]"
+        echo "channel = \"nightly\""
+        echo "profile = \"minimal\""
+    } >> "./rust-toolchain.toml"
+
+    if [ -f "./Cargo.toml" ]; then
+        if [ -f "./Cargo.toml.bak" ]; then
+            echo "Error: An old Cargo.toml.bak was found."
+        fi
+        cp "./Cargo.toml" "./Cargo.toml.bak"
+    fi
+
+    if [ -f "./Cargo.lock" ]; then
+        if [ -f "./Cargo.lock.bak" ]; then
+            echo "Error: An old Cargo.lock.bak was found."
+        fi
+        cp "./Cargo.lock" "./Cargo.lock.bak"
+    fi
+
+    sed -i -e 's/version.workspace.*/version = "0.0.0"/g' "./Cargo.toml"
+}
+
+function teardown {
+    if [ -f "./rust-toolchain.toml.bak" ]; then
+        mv "./rust-toolchain.toml.bak" "./rust-toolchain.toml"
+    else
+        rm "./rust-toolchain.toml"
+    fi
+
+    if [ -f "./Cargo.toml.bak" ]; then
+        mv "./Cargo.toml.bak" "./Cargo.toml"
+    fi
+
+    if [ -f "./Cargo.lock.bak" ]; then
+        mv "./Cargo.lock.bak" "./Cargo.lock"
+    fi
+    
+    cargo uninstall stack-sizes
+}
+
+trap teardown EXIT
+
+setup;
+
+function largest_stack_frame {
+    RUSTFLAGS="-C embed-bitcode=yes"
+    FRAME_SIZES="$(cargo stack-sizes --release --example $1 | sort -g -k 2)"
+
+    echo "(% STACK FRAME SIZES %)"
+    echo "$FRAME_SIZES"
+    echo "(% -------END------- %)"
+    
+    MAX_FRAME_SIZE=$(echo "$FRAME_SIZES" | tail -n 1 | awk '{print $2}')
+    MAX_FRAME_NAME=$(echo "$FRAME_SIZES" | tail -n 1 | awk '{print $3}')
+
+
+    if (( MAX_FRAME_SIZE > FRAME_SIZE_LIMIT)); then
+        echo ""
+        echo "Function $MAX_FRAME_NAME is above the limit:"
+        echo "Limit:         $FRAME_SIZE_LIMIT"
+        echo "Frame Size:    $MAX_FRAME_SIZE"
+        echo ""
+        exit 1
+    else
+        echo ""
+        echo "All functions below stack frame limit"
+        echo ""
+    fi
+}
+
+largest_stack_frame $1;
+