Hi there, I did a search if anyone has asked this question or announcement from atlassian but to no avail.
My question is if there is any timeline on Atlassian supporting commit signature verification with SSH key?
Com'on, no support of SSH keys signature in the end of 2024?
I switched from GPG to SSH for one common and clear reason - I can use single key for authentication on Git and for signing my commits. On bitbucket my commits are marked with yellow "Warning Sign" because "commit was signed unverified signature"...
Such essential thing is missing
Agreed, this is very much missing capability.
Blog post mentions signing commits with SSH keys is coming next https://www.atlassian.com/blog/bitbucket/strengthen-code-security-with-signed-commits
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
I think you mean the GPG key. I also think you mean the kind of support Github/Gitlab offers.
I've been hoping for this feature in Bitbucket myself for years. To my knowledge it is not something Atlassian has on their roadmap to add a visual indicator for signed commits to the Bitbucket Web UI.
This does not withhold you from signing your commits however. Technically Git still supports this and this information will be stored in the repository at Bitbucket. It does make the accessibility to this information more difficult by not supporting this through the Web UI.
You can vote for this feature here:
https://jira.atlassian.com/browse/BCLOUD-3166
Though I don't think they are likely to pick this up soon...
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.