search

renovatebot / app-support

Discussion/support issues for the hosted Renovate App
0 stars 0 forks source link

WhiteSource Renovate GitLab app commits are unverified #24

Closed Jamesking56 closed 4 years ago

Jamesking56 commented 4 years ago

What Renovate type are you using?

Renovate GitLab App

Describe the bug

Commits by the Renovate user are unsigned / unverified.

Did you see anything helpful in debug logs?

Irrelevant

To Reproduce

  1. Hook GitLab repository up to Renovate GitLab
  2. Wait for a renovate PR
  3. View the commit to see GitLab shows it as unverified:

screenshot

Additional context

I think the bot user just needs a valid GPG key adding that matches what the app uses.

Jamesking56 commented 4 years ago

Looks like its using a GPG key to sign the commits, but the GPG key does not exist on the bot user:

screenshot

rarkins commented 4 years ago

It's uploaded to GitHub but I guess needs uploading to GitLab too

Jamesking56 commented 4 years ago

This still looks to be an issue for me

rarkins commented 4 years ago

Yes, it’s still an open issue

rarkins commented 4 years ago

I've attempted to copy over the GPG key to the right account on GitLab.com right now, but I'm seeing neither verified or unverified feedback on existing commits I checked: image

rarkins commented 4 years ago

OK here we go: image

Seems like you might need to be in Branch view to see it. In MR view I don't see any indication:

image

Jamesking56 commented 4 years ago

Thanks @rarkins :+1: