223
me when i find out i can use ssh to sign my git commits (lemmings.world)
submitted 1 week ago by quantenzitrone@lemmings.world to c/programmer_humor@programming.dev
35 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[-] Xanza@lemm.ee 4 points 1 week ago

Wouldn’t that mean you’d have to share your public key anyway?

Public keys aren't meant to be private. The function is literally in the name... But no, you don't necessarily have to share your public key, but for someone to verify that a specific public key was used to sign a commit, the public key is required. So there's absolutely no reason to sign your commits if you intend on keeping your public key, private... It completely defeats the entire purpose....

[-] 0x0@lemmy.zip 1 points 1 week ago

Thanks, i know what "public" means.
I don't see "not usually installed on your system" as a strong enough disadvantage to PGP for this use case.

this post was submitted on 11 Apr 2025
223 points (95.9% liked)

Programmer Humor

22541 readers
1204 users here now

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

founded 2 years ago
MODERATORS
Feyter@programming.dev
anzo@programming.dev
BurningTurtle@programming.dev
pylapp@programming.dev