-
Notifications
You must be signed in to change notification settings - Fork 0
Home
Will edited this page Jan 1, 2023
·
1 revision
signet is a command line tool for signing source code changes and arbitrary files such as build outputs. Signatures are generated in
SSHSIG format and signing keys are standard SSH keys making signet compatible with OpenSSH's
ssh-keygen -Y sign | verify commands.
Usage: signet <command> Commands: init initialize signet keys manage signing keys sign generate signature verify verify signature
Initialize signet and create a new signing key:
signet init -s signet keys -c
Configure git to sign all future commits and tags in the current repository using signet:
git config user.signingkey <key id> git config gpg.format ssh git config gpg.ssh.program <path/to/signet/executable> git config commit.gpgsign true git config tag.gpgsign true
Alternatively git config --global can be used to enable signing for all repositories.