PGP signing commits

Martin Bednar martin at serafean.cz
Thu Jun 11 20:12:18 BST 2026


Hi, 

On the topic of requiring GPG signed commits, opened here:
https://invent.kde.org/kdevelop/kdevelop/-/merge_requests/896#note_1519822

I believe this warrants a wider discussion.

I'm all for it, as in anything going into master should be PGP signed. I am 
however worried that it creates yet another hurdle for one off contributions, 
as we have had a few in the past few months. Any thoughts on that?

Should we enforce this at gitlab level?

And on a slightly related note: Anyone going to Akademy?

Martin.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 265 bytes
Desc: This is a digitally signed message part.
URL: <http://mail.kde.org/pipermail/kdevelop-devel/attachments/20260611/6c8e20b0/attachment.sig>


More information about the KDevelop-devel mailing list