-
Suggestion
-
Resolution: Fixed
-
None
-
13
-
I'm excited to share that we've released Bitbucket DC 8.15, a new version that includes Signing commits and tags with X.509 (S/MIME) certificates. This release allows developers to sign commits and tags with certificates issued by your PKI, instead of using GPG keys. This feature will help you improve security of repositories and make it easier to enforce commit signing policies across the organisation.
For more information, I’m inviting you to explore the Bitbucket 8.15 release notes. For specific details on how to sign commits and tags with SSH keys, please visit our documentation.
As always, we appreciate your continued support and welcome any feedback or comments you may have.
Cheers,
Anton Genkin
Product Manager - Bitbucket Data Center
Original message
Add support for x509 certificate signed commits to the "Verify Commit Signature" hook.
Currently the hook supports GPG key signing, but could be enhanced for x509.