DEV Community

Austin Songer
Austin Songer

Posted on

GitTrust (GT): Enhanced S/MIME Commit Signing with Device Authentication

Inspired by FIGMA

To proactively mitigate the risk of malicious code reaching production, GitTrust ensures that code changes merged into GitHub release branches come from trusted, company-managed devices. It does this by S/MIME signing for Git commits in an environment where devices are managed by MDM and access control is managed by Okta. It ensures that only compliant devices can make signed commits to Git repositories.

Looking for contributors.
https://github.com/austinsonger/GitTrust

Top comments (0)