https://www.pistack.xyz/tags/code-signing/ Recent content in Code-Signing on Pi Stack Hugo en-us Tue, 12 May 2026 00:00:00 +0000 https://www.pistack.xyz/posts/2026-05-12-self-hosted-git-commit-signing-gpg-ssh-sigstore-cosign-guide/ Tue, 12 May 2026 00:00:00 +0000 https://www.pistack.xyz/posts/2026-05-12-self-hosted-git-commit-signing-gpg-ssh-sigstore-cosign-guide/ <p>Every commit pushed to a shared repository carries an implicit claim about authorship, but without cryptographic verification, anyone can forge another developer&rsquo;s identity in the commit log. Git commit signing solves this by attaching a cryptographic signature to each commit, proving that the code originated from a trusted key holder.</p>