Linus Torvalds writes: (Summary) wrote:
Oh, and equally importantly, it's an unsigned pull request from a non-secured site, so I think I'll skip this.
non-secured site, so I think I'll skip this.
Yes, yes, I've allowed these guys, and haven't really enforced it, but the rule for the last year or so has been that if it's not something where I have good reason to trust the repository integrity (ie kernel.org), I require signed tags for pull requests. Git signed tags are pretty darn simple to use. Git signed tags are pretty darn simple to use.
[...]
got..Oh, and equally importantly, it's an unsigned pull request from a non-secured site, so I think I'll skip this.
non-secured site, so I think I'll skip this.
Yes, yes, I've allowed these guys, and haven't really enforced it, but the rule for the last year or so has been that if it's not something where I have good reason to trust the repository integrity (ie kernel.org), I require signed tags for pull requests. Git signed tags are pretty darn simple to use. Git signed tags are pretty darn simple to use.