We *really* need to establish signing commits with a verified key as common practice in software development.
For some critical projects it should probably even be a strict requirement for collaboration 🤔
(for some it already is, but it's still the exception, not the rule)
grin
•grin
•grin
•