Source: cloudwithchris.medium.com
Using GPG Keys to sign Git Commits — Part 4Category: github
Part 4 — The final part (at least for now, until I find somewhere else that we can expand on with this)! This part will focus on porting the keys that we have recently generated onto our YubiKey device.
When you plug your YubiKey in, you should see that it gets detected as YubiKey NEO with a combination of additional information, e.g.
I am making an assumption that you still have the Git configuration in place from part 3 which forces all commits to be signed by the signing GPG Key (as you specified the Key ID).
You’ve now used the GPG signing key that you generated in part 2, transferred it onto a YubiKey device and generated a signed commit as a result.
When you plug your YubiKey in, you should see that it gets detected as YubiKey NEO with a combination of additional information, e.g.
I am making an assumption that you still have the Git configuration in place from part 3 which forces all commits to be signed by the signing GPG Key (as you specified the Key ID).
You’ve now used the GPG signing key that you generated in part 2, transferred it onto a YubiKey device and generated a signed commit as a result.
Related Articles
Community Partners
DevOps Careers