top | item 37572717 (no title) njaremko | 2 years ago I think letting me give you a gpg private key and you sign commits with that would be ideal. I'm not sure how the app signing commits would work, since it needs to be signed by a member of our org I believe? discuss order hn newest Xiulung|2 years ago Yep, our app signing the commits would mean requiring your org to approve the app as "someone" who can contribute to the repo amtamt|2 years ago then why not let them generate the key itself? njaremko|2 years ago So I can revoke the key if I need to (my understanding is that you need the private key for that)
Xiulung|2 years ago Yep, our app signing the commits would mean requiring your org to approve the app as "someone" who can contribute to the repo
amtamt|2 years ago then why not let them generate the key itself? njaremko|2 years ago So I can revoke the key if I need to (my understanding is that you need the private key for that)
njaremko|2 years ago So I can revoke the key if I need to (my understanding is that you need the private key for that)
Xiulung|2 years ago
amtamt|2 years ago
njaremko|2 years ago