Releases: rogeruiz/repasar
Releases · rogeruiz/repasar
v1.0.0
Releasing version 1.0 of Repasar GitHub Action to use GPG signed with SSH keys to verify that the SHA for the current commit is signed by a user in a /.github/allowed_signers
file that gets checked into the repository. This path is configurable to be anywhere in the repository. The Action can optionally be made to fail in order to prevent Pull Requests from being able to be merged in if the user's SSH key is not used to sign the commits and known to the repository.