|
You are here |
den.dev | ||
| | | | |
128bit.io
|
|
| | | | | GPG stands for GNU Privacy Guard, it's a public-key cryptography that can be used to digitally sign items like commits in Git. GPG provides a lot more functionality, but let's go into why you would want to digitally sign your Git commits. Git does not have any way to validate the author of a commit. When setting up a Git client on your system you are able to use any email address you desire. | |
| | | | |
navendu.me
|
|
| | | | | Exploring how symmetric-key and public-key cryptography works by using GPG keys to sign commits and send encrypted messages. | |
| | | | |
artemislena.eu
|
|
| | | | | ||
| | | | |
byparker.com
|
|
| | | With the increasing prevalence of inserting malicious code into commonly-used open source projects on the rise, it might be time to enforce commit signing for your open source project. This prevents someone from spoofing your identity on commits they make. If it's not signed with your key, then it's not verified and the UI will show this. | ||