If you do not sign your commits, you deserve to be impersonated. Well, not really, but you get the gi(s)t.
this post was submitted on 14 Mar 2025
203 points (97.2% liked)
Programmer Humor
34775 readers
506 users here now
Post funny things about programming here! (Or just rant about your favourite programming language.)
Rules:
- Posts must be relevant to programming, programmers, or computer science.
- No NSFW content.
- Jokes must be in good taste. No hate speech, bigotry, etc.
founded 5 years ago
MODERATORS
Beautifull
HA. That made laugh out loud. Thanks.
Identity theft is not a joke, Jim.
hey, at least it's a --force-with-lease, we're not animals
Pijul decouples your identity from you commits & proves your SSH key ownership. It is a beautiful thing that you can change your name or email & not have to get a force push to update all that info since you are now just identified by the primary key from the identity server. No more worries about being embarrassed by your old Protonmail or GMail account,no more dead names in the commit history, & no care about identity stealing by just changing the config.
That's an interesting project.
I'll add to anyone who doesn't already know it, that most people not using something like Pijul probably should be using a noreply email for git commits to prevent the spam, and that GitHub and potentially others already have it:
I think for development processes not centered around emails this is a must have.
Being able to have a decentralized form to accept patches is key to keeping the D in DVCS (distributed version control system). Pijul you can omit the email & even name if you want to be anonymous, or your key servers could offer better forms of communication.
I totally disagree with letting Microsoft GitHub be a sink for email. Not only is it US-based, publicly-traded with shareholders to appease, & fully proprietary… but they are also a major data siphon with Copilot™ products trained on then sold back from code & conversation in what should The Commons which probably include these no replies. We are also talking about a massively centralizing platform saying omitting your email is fine since you can direct your contributors to use their closed, proprietary platform—something anyone with any sympathy for free software ethos or even basic privacy for contributors would never demand, endorse, or encourage the usage of MS GitHub in any form.
Yall don't have protected branches?