I have my GitHub account set to keep my personal email address private. The only place my personal email address is used at GitHub is to email me notifications.
This means that an address of the form <username>@users.noreply.github.com
is supposed to be used and shown in the GitHub web interface for all other items.
To ensure that my name and personal email address is not exposed in the commit details, I have set my git config user.email
to the same no-reply
address, and my user.name
to my GitHub username.
To sign my commits I have created a GPG key. The key also uses the noreply
address. The key is added to my GitHub account.
However, in the GitHub interface, I see that my commits are still unverified.
Am I using the correct email address at the right points here? Is it possible to sign commits and have both the commit and signing info not expose my personal info?
no-reply
address. It seems that the new format is[email protected]
(see note). You can check you actualno-reply
address at Email settings page.