Stack Overflow
Stack Overflow

Questions tagged [gpg-signature]

127 questions
3
votes
2 answers

Maven: Unable to execute gpg command

I am trying to add my school project to the maven repository. I am following this tutorial: https://blog.sonatype.com/2010/01/how-to-generate-pgp-signatures-with-maven/. I already generated a key and passphrase successfully and I have added the…
Crossoni
  • 193
  • 1
  • 10
3
votes
0 answers

How to disable pin/passphrase timeout in GPG, so I don't have to enter it for every commit, on Windows 10? There's no `gpg.conf` or `gpg-agent.conf`

I've looked for help around this everywhere and disected several stackoverflow threads but they all seem to be out of date or simply not valid to windows 10. The most promising has been this thread which relies on --pinentry-mode-loopback but I…
SebastianG
  • 8,563
  • 8
  • 47
  • 111
3
votes
1 answer

How to fix 'cannot run --version: No such file or directory' error during Git commit GPG signing

Initial Steps and Problem I installed Git on my Mac and then tried to set up GPG signature verification by following the steps outlined in Github. The first time I did a test git commit through the Mac OS Terminal I was requested my passphrase and…
Kusine
  • 41
  • 8
3
votes
1 answer

Visual Studio Code 1.28.2 and GitHub signed commits using password-protected GPG key

Does anybody know if there's a way to make VS Code ask for the GPG password when signing the commits? I feel somehow uncomfortable having to use a password-less GPG key to do so.
solr
  • 1,092
  • 1
  • 10
  • 14
3
votes
2 answers

Android Studio gradle bintray upload failed: Could not sign version

After running ./gradlew bintrayUpload I am getting the following error. :my-library:bintrayUpload FAILED FAILURE: Build failed with an exception. What went wrong: Execution failed for task ':my-library:bintrayUpload'. Could not sign version…
Suragch
  • 484,302
  • 314
  • 1,365
  • 1,393
2
votes
0 answers

Unverified GPG signature committed by GitHub, why?

I was working on a C++ project in CLion. I came across a Git Log message: When I make changes on a repository directly from GitHub, why does it say Unverified GPG signature in the Git Log despite having a Verified mark on GitHub? Edit 1: I have…
Rohan Bari
  • 7,482
  • 3
  • 14
  • 34
2
votes
4 answers

curl command with pipe not working in Ansible

I am trying to execute below command which is part of Docker installation, but it got stuck. The gpg part of the command got stuck, if I remove gpg after pipe, it works. --- - hosts: all become: yes tasks: - name: add docker GPG key …
Vamp thehacker
  • 33
  • 4
2
votes
0 answers

Why NGINX signature could not be verified? The following signatures couldn't be verified because the public key is not available

I tried curl -fsSL https://deb.nodesource.com/setup_lts.x | sudo -E bash - got error W: GPG error: http://nginx.org/packages/ubuntu focal InRelease: The following signatures couldn't be verified because the public key is not available: NO_PUBKEY…
MarkoGM
  • 123
  • 2
  • 10
2
votes
2 answers

Integration of GPG-signed Git commits in VSCode Dev Container (WSL2 Ubuntu v20)

I am using Windows10 WSL2(running with Ubuntu v20) with VSCode. I want to send GPG-signed Git Commit to GitHub in VSCode Dev Container. I try with the setup like below: Install Gpg4win in Windows install packages in WSL2 sudo apt-get install gpg…
ikhvjs
  • 5,316
  • 2
  • 13
  • 36
2
votes
0 answers

Git GPG signing for multiple authors

Is there a way to verify multiple authors signed a commit using multiple GPG keys. My teams already use Co-Authored-by trailers in the git commit message. For compliance reasons I'm hoping to verify each attributed author using GPG signing(GPG +…
dane
  • 398
  • 1
  • 2
  • 7
2
votes
2 answers

Why do all my GitHub commits show as unverified?

Suddenly, all of my commits (my entire history it seems) in all of my repos show as "unverified". Until quite recently, I'm pretty sure all of my commits were marked as verified, and that this change occurred in the past few days. But I can't figure…
orome
  • 45,163
  • 57
  • 202
  • 418
2
votes
1 answer

How to locally verify signed commits by other people?

For analytics purposes, I'd like to run the following command and see which commits have been signed within a rather big repository: git log --pretty="%h %G?" As per Git docs, the %G? placeholder can return: G for a good (valid) signature B for a…
katericata
  • 1,008
  • 3
  • 14
  • 33
2
votes
2 answers

Import PGP public key from Fingerprint

I have the fingerprint 71A3 B167 3540 5025 D447 E8F2 7481 0B01 2346 C9A6 and I want to download the public key to verify the archive. I'd like to download the key from terminal, and I try to use that command: gpg --search-keys "71A3 B167 3540 5025…
monkeyUser
  • 4,301
  • 7
  • 46
  • 95
2
votes
1 answer

Get key signature/fingerprint for GPG Public Key

How can I get the key signature from a GPG Public Key? For example, I need a signature for Spotify's public key here: https://download.spotify.com/debian/pubkey.gpg Something like this, but for GPG Keys. This is as far as I've got: $ gpg…
43Tesseracts
  • 4,617
  • 8
  • 48
  • 94
2
votes
1 answer

Handling GPG keys with separate emails for GitLab and GitHub

How does one handle GPG key(s?) with two different email addresses, one on GitHub and the other on GitLab. I have a college email address and they force me to use GitLab. I have a private email address which I use for GitHub. I want those two…
Filip Pranklin
  • 345
  • 1
  • 3
  • 14
1 2
3
8 9