Preview support for Git signing
GitHub recently started verifying GPG signed commits and tags. We are adding API support for signature verification and user GPG key management as well. You can enable these changes during the preview period by providing a custom media type in the Accept
header:
application/vnd.github.cryptographer-preview
For example:
curl "https://api.github.com/user/gpg_keys" \ -H 'Authorization: token TOKEN' \ -H "Accept: application/vnd.github.cryptographer-preview" \
You can learn more about the new signature verification response objects in the updated repository commit, Git commit, and Git tag documentation. There is also new GPG key management documentation.
During the preview period, we may change aspects of these APIs based on developer feedback. We will announce the changes here on the developer blog, but we will not provide advance notice.
If you have any questions or feedback, please let us know.