make-github-pseudonymous-again
commented
3 years ago Signing keys cannot necessarily be used as encryption keys.
Open jappeace opened 7 years ago
make-github-pseudonymous-again
commented
3 years ago Signing keys cannot necessarily be used as encryption keys.
Since you guys already support GPG keys to your account to verify commit/tag signatures, you may as well add a security option to encrypt email traffic from github.
Facebook also has this feature (to my pleasant surprise).
This should make account recovery emails a lot more secure.