Age | Commit message (Collapse) | Author | |
---|---|---|---|
2017-11-09 | Merge #10771: Remove unused variables in shell scripts | Wladimir J. van der Laan | |
ab8e8b9 Remove unused variables in shell scripts. (practicalswift) Pull request description: Remove unused variables in shell scripts. Use `_` where we don't care about the result. Tree-SHA512: 35049e79ee432c805f061456c32902a92811b5214d50ce6770b22d1442cc5999ed53cfe05bb2347f6995ca33c707a0f3fe92d5829c0385c4a3e254953924cbc4 | |||
2017-10-20 | [verify-commits] Allow revoked keys to expire | Matt Corallo | |
2017-10-09 | Remove accidental stray semicolon | practicalswift | |
2017-08-09 | Remove unused variables in shell scripts. | practicalswift | |
2017-03-09 | Update trusted-sha512-root-commit for new bad tree hash | Matt Corallo | |
2017-03-09 | If GNU sha512sum is missing, try perl shasum in verify-commits | Matt Corallo | |
2017-03-09 | Make verify-commits.sh non-recursive | Matt Corallo | |
2017-03-06 | Fix bashisms in verify-commits and always check top commit's tree | Matt Corallo | |
2017-03-06 | Check gpg version before setting --weak-digest | Matt Corallo | |
2017-03-05 | Fix regsig checking for subkey sigs in verify-commits | Matt Corallo | |
2017-03-04 | Allow any subkey in verify-commits | Matt Corallo | |
2017-03-04 | Add comment re: why SHA1 is disabled | Peter Todd | |
2017-03-04 | Verify Tree-SHA512s in merge commits, enforce sigs are not SHA1 | Matt Corallo | |
2017-02-27 | Add Pieter's old signed commits to revsig-commits | Matt Corallo | |
2017-02-01 | Require merge commits merge branches on top of other merge commits | Matt Corallo | |
Specifically, require that the left branch (first restult of git show -s --format=format:%P) is a signed merge commit, instead of allowing either. This is fine for now, but might need to be relaxed in the future. Also fixes an out-of-file-descriptors issue by holding too many open FDs writing to /dev/null | |||
2016-09-11 | [copyright] add MIT license headers to .sh scripts where missing | isle2983 | |
Years are set according to 'git log' history | |||
2016-06-18 | Remove sipa's old revoked key from verify-commits | Peter Todd | |
Now that the trusted root is past all commits signed by that key we don't need it in the trusted-keys list, nor do we need to whitelist those commits in allow-revsig-commits | |||
2016-06-09 | Add README for verify-commits | Peter Todd | |
2016-05-21 | Remove keys that are no longer used for merging | Peter Todd | |
Also updated trusted git root to be right after gmaxwell's last merge. | |||
2016-05-21 | Remove pointless warning | Peter Todd | |
Any attacker who managed to make an evil commit that changed something in the contrib/verify-commits/ directory could just as easily remove the warning and/or modify it to not display the evil commits; telling the user to check those commits specifically misleads them into checking just those commits rather than the script itself. | |||
2016-05-21 | Make verify-commits path-independent | Matt Corallo | |
2016-05-21 | Make verify-commits POSIX-compliant | Matt Corallo | |
2016-04-21 | [contrib] verify-commits: Add MarcoFalke fingerprint | MarcoFalke | |
2015-11-13 | add jonasschnellis key to git-verify-commits trusted-keys | Jonas Schnelli | |
2015-11-06 | Use Pieter's signing subkey instead of his primary key | Matt Corallo | |
This commit is signed. | |||
2015-10-27 | Add Pieter's new PGP key to verify-commits/trusted-keys | Matt Corallo | |
2015-10-23 | Whitelist commits signed with Pieter's now-revoked key | Matt Corallo | |
2015-10-22 | Fix pre-push-hook regexes | Matt Corallo | |
2015-09-14 | Update trusted-git-root to the most recent unsigned commit | Matt Corallo | |
2014-12-20 | Add script to verify all merge commits are signed | Matt Corallo | |