I thought we'd already set the "require signed commits" bit in this repo, but apparently not. Doing so is a security recommendation from secops, and seems like it will become more valuable as our work makes it into more products. Any objections to enabling this requirement in repo config?
I thought we'd already set the "require signed commits" bit in this repo, but apparently not. Doing so is a security recommendation from secops, and seems like it will become more valuable as our work makes it into more products. Any objections to enabling this requirement in repo config?