On Wednesday, 17 September 2025 16:48:38 British Summer Time Ian Jackson wrote: > Package: git-debpush > Version: 13.14 > > hibby writes in Bug#1108267: > > My workflow is to have my commits to salsa signed by ssh-keys [1] on each > > machine so I can work when travelling on things and sign the commits, then > > upload when I'm home and reunited with my key. > > I think this was done with the `gpg.format` config option. Presumably > if git-debpush overrode that, everything would work? > Yep, gpg.format and user.signingkey are both set for the ssh, belt-and-braces would be to override both.
> hibby, can you confirm that you think that would work? We could send > you a patch to try. > Yep - i can try out a patch. I'll leave the existing config in place before I make any changes based on the below! > PS: Since someone mentioned git signed commits I'm afraid I feel I > have to jerk my knee: git signed commits are a bad idea, as I wrote in > my 2018 blog post: https://diziet.dreamwidth.org/515.html I had a read earlier based on your email, food for thought. Salsa/Gitlab incentivises signing commits with verified badges - https:// salsa.debian.org/help/user/project/repository/signed_commits/ssh.md, Thanks for your input and thoughts! -- Dave Hibberd <[email protected]> Debian Developer Packet Radioist MM0RFN
