Sebastian Götte efed002249 merge/pull: verify GPG signatures of commits being merged ...

When --verify-signatures is specified on the command-line of git-merge
or git-pull, check whether the commits being merged have good gpg
signatures and abort the merge in case they do not. This allows e.g.
auto-deployment from untrusted repo hosts.

Signed-off-by: Sebastian Götte <jaseg@physik-pool.tu-berlin.de>
Signed-off-by: Junio C Hamano <gitster@pobox.com>

2013-03-31 19:23:59 -07:00

7.7 KiB

Executable File

Raw Blame History

View Raw