Skip to content

Latest commit

 

History

History
15 lines (11 loc) · 1.06 KB

signing_commits.md

File metadata and controls

15 lines (11 loc) · 1.06 KB

Signing commits

I am using app called SmartGit and manual says

  • if you are using Windows, please install Gpg4win (verified with Gpg4win 3.1.16)
  • run gpa.exe (usually found in C:\Program Files (x86)\Gpg4win\bin) and create a key pair securing it with a passphrase
  • in SmartGit Repository | Settings, tab Signing configure the full path to the gpg.exe and enter the Key ID of your created key pair
  • if necessary, select Sign all commits
  • when committing a file or tagging, a popup of GPG will occur and ask you for the key's passphrase (actually just the first time in the app's lifetime)

GitHub documentation:

  • run gpg --full-generate-key to generate key pair
  • run gpg --list-secret-keys --keyid-format=long to get key ID
  • run gpg --armor --export $USE_ID_YOU_GET to get public key to copy into GitHub profile settings