accumulo-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Josh Elser <josh.el...@gmail.com>
Subject Re: GPG verification in GitHub tags
Date Wed, 06 Apr 2016 14:55:32 GMT
CHRISTOPHER. What is this voodoo. Looking into this now :)

Christopher wrote:
> You could just add the extra identity to your key. :)
>
> On Wed, Apr 6, 2016, 09:49 Josh Elser<josh.elser@gmail.com>  wrote:
>
>> Well, it seems I made Github unhappy using a key for
>> josh.elser@gmail.com but having the email on the commit/tag be
>> elserj@apache :)
>>
>> But, some of the releases I made are now listed as "verified".
>>
>> Christopher wrote:
>>> Devs,
>>>
>>> I saw GitHub rolled out a new feature to verify GPG-signed commits and
>> tags
>>> in the UI [1]. If release managers upload their GPG public keys to their
>>> profile in GitHub[2], it shows up as "Verified", which is pretty cool
>> [3].
>>> [1]: https://github.com/blog/2144-gpg-signature-verification
>>> [2]: https://github.com/settings/keys
>>> [3]: https://github.com/apache/accumulo/tags
>>>
>

Mime
View raw message