|
|
|
|
|
|
by wongarsu
4082 days ago
|
|
|
Some projects sign their release commits and tags, some even their merge commits, but I have never seen a project which actually signs every commit. The reasoning is always that you are actually signing the whole commit chain because your commit is liked to every previous one by the commit hashes. |
|
|