Closed joepavitt closed 1 year ago
I have now installed gpg
and now just get the
BUG: gpg-interface.c:284: bad signature '-----BEGIN SSH SIGNATURE-----
<SSH KEY REMOVED FOR POSITING HERE>
-----END SSH SIGNATURE-----
'
message
Have noticed the Currently, Ungit DOES NOT support GPG authentication! While git allows robust programmatic authentication via [credential-helper](https://help.github.com/articles/telling-git-about-your-gpg-key/), I could not find an easy way to do something equivalent with GPG.
in the ungit README.
Unfortunately, I'm working in an open source project, and another contributor has used GPG to sign their commits. This is out of my control, and I can reproduce the error in a terminal with:
git verify-commit 3970242792a9dce99267bff0486eba1c4291eec2
Or any commit message contributed by that author. As I am not using the GPG auth myself, I'm hoping there is a workaround to continue using ungit?
Just to be clear, lots of the commits are GPG signed, the problem is that we have a commit signed by a SSH key, not a GPG key.
Fix appears to be upgrade git to a version (newer than 2.34.0) that supports SSH key signing.
Hm maybe we should update the readme then? https://github.com/FredrikNoren/ungit/blob/3eb347b0aa4134ac1e6bcd3a1988ee041ee7b542/README.md?plain=1#L29
Hm maybe we should update the readme then?
I've recently pulled from
main
on a repository that I work in every day and now I am seeing the following error within ungit:I do not gpg sign my commits, nor have I ever, so am unsure why this is running, and consequently tripping now? I am able to run
status
,add
andcommit
from a terminal without any issue.