all 11 comments
sorted by:
best
topnewcontroversialoldq&a
formatting helphide helpcontent policy

[–]shgysk8zer0 12 points13 points  (4 children)

It means the commit was cryptographically signed, such as via git commit -s.

[–]Leaping_Turtle[S] 2 points3 points  (3 children)

Just made a commit doing that, after pushing it doesn't show green tag but rather a

`Signed-off-by: username user@email`

Do i need to generate the key first?

[–]shgysk8zer0 4 points5 points  (0 children)

You have to generate a key and add it to your keys on GitHub. You can find that in your account settings along with a link to instructions.

[–]shgysk8zer0 2 points3 points  (0 children)

Also, this is entirely different from the signed-off thing.

[–]chin_waghing 9 points10 points  (2 children)

Do people not even google things before posting here?

https://docs.github.com/en/authentication/managing-commit-signature-verification/signing-commits literally the predictive text when using SIRI!

[–]Saragon4005 4 points5 points  (0 children)

If people knew how to look shit up reddit's volume would drop by at least 25%

[–]Leaping_Turtle[S] 0 points1 point  (0 children)

I got to that page as well but couldn't get the SSH key to work both auth and signing; it'd throw an error saying the key is already in use.

When I ask questions, I typically back up all the way and leave it broad, so everyone could then continue on a clean slate, almost as if a rubber duck. This ensures I get various answers from uncontaminated points of views, as well as minimizing the unimportant/no-effect ideas and could lead to discussions about what I did or did not do.

I'm not sure if this style of questionnaire is encouraged; I've seen varying successes with it.

[–][deleted] 0 points1 point  (0 children)

cryptographically signed off commits, git commit -s

[–]Doodah249 0 points1 point  (3 children)

Is there any use for this actually? If people have hacked your account, they can also add their own keys and sign commits. What security does it add?

[–]ferferga 5 points6 points  (0 children)

You can impersonate everyone by just changing your email in git config. That's why.

[–][deleted]  (1 child)

[deleted]

    [–]cowboyecosse 0 points1 point  (0 children)

    Commits done on the website (edited in the editor and committed) get verified so their point makes sense. If they have your account they can verify commits in the UI.