Open Bug 1540282 Opened 5 years ago Updated 2 years ago

Consider requiring Github commits to be gpg signed

Tracking

()

Status:

NEW

Tracking Flags:

Tracking

Status

fxios

---

People

(Reporter: garvan, Unassigned)

Details

:garvan

Reporter

Description

•

5 years ago

•

Edited

Mozilla has recommended guidelines for Github repo administration, one such guideline is to require signed commits to release branches/master:

https://wiki.mozilla.org/GitHub/Repository_Security

https://wiki.mozilla.org/GitHub/Repository_Security/Problems_and_Options#Problem:_Needing_to_setup_GPG_for_use_on_GitHub_might_dissuade_contributors

:garvan

Reporter

Updated

•

5 years ago

Summary: Github commits must be gpg signed → Consider requiring Github commits to be gpg signed

Justin D'Arcangelo [:justindarc]

Updated

•

5 years ago

tracking-fxios: ? → +

Priority: -- → P3

BMO Automation

Updated

•

2 years ago

Severity: normal → S3

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Consider requiring Github commits to be gpg signed

Categories

(Firefox for iOS :: Build & Test, enhancement, P3)

Tracking

()

People

(Reporter: garvan, Unassigned)

References

Details

Crash Data

Security

(public)

User Story

Description

Updated

Updated

Updated