[Dev] git integrity
john@nordu.net
30 Jan
2016
30 Jan
'16
9:42 p.m.
On 2016-01-30 15:15, John Van de Meulebrouck Brendgard wrote:
On 2016-01-30 10:41, Linus Nordberg wrote:
If you are interested you can also checkout (and improve) the script I
made to verify the signatures on all commits in a branch or the commits
made after the last trusted tag:
https://github.com/SUNET/eduid-developer/blob/master/git_signature_check.sh
//John
Hi,
It seems like git doesn't actually verify checksums by default.
https://groups.google.com/forum/?_escaped_fragment_=msg/binary-transparency…
I think it makes sense to perform the following on all repos:
printf "[transfer]\n\tfsckobjects = true\n[fetch]\n\tfsckobjects =
true\n[receive]\n\tfsckobjects = true\n" >> .git/config
git fsck --full
_______________________________________________
Dev mailing list
Dev at lists.sunet.se
https://lists.sunet.se/listinfo/dev
Thanks, I've added it globally.
If you sign commits, I can also recommend to make an alias
git-merge='git merge --verify-signatures --no-ff' to automatically
verify the signatures in the branch to be merged, as well as set
git-pull to the alias "git pull --verify-signatures".
//John