The latest articles on DEV Community by Austin Songer (@austinsonger). https://dev.to/austinsonger https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F179827%2F02d8f9c5-8899-4c47-8ec3-865889285ee5.jpeg https://dev.to/austinsonger en Austin Songer Sun, 10 Dec 2023 20:34:41 +0000 https://dev.to/austinsonger/gittrust-gt-enhanced-smime-commit-signing-with-device-authentication-2003 https://dev.to/austinsonger/gittrust-gt-enhanced-smime-commit-signing-with-device-authentication-2003 <p>Inspired by <a href="https://www.figma.com/blog/how-we-enforce-device-trust-on-code-changes/">FIGMA</a></p> <p>To proactively mitigate the risk of malicious code reaching production, GitTrust ensures that code changes merged into GitHub release branches come from trusted, company-managed devices. It does this by S/MIME signing for Git commits in an environment where devices are managed by MDM and access control is managed by Okta. It ensures that only compliant devices can make signed commits to Git repositories.</p> <p><strong>Looking for contributors.</strong><br> <a href="https://github.com/austinsonger/GitTrust">https://github.com/austinsonger/GitTrust</a> </p> security git