Only verify commit signatures if the user email is verified
Currently, users are able to create "verified" commit signatures for emails they don't control. Changelog: security
Showing
Please register or sign in to comment
Currently, users are able to create "verified" commit signatures for emails they don't control. Changelog: security