diff options
author | Konstantin Ryabitsev <konstantin@linuxfoundation.org> | 2020-09-16 12:09:49 -0400 |
---|---|---|
committer | Konstantin Ryabitsev <konstantin@linuxfoundation.org> | 2020-09-16 12:09:49 -0400 |
commit | 5887d1d68edf7e6b6aed37f9d4f24b2daacaa123 (patch) | |
tree | 8b952a2a53f9b2840b77131e6a16ab828182348e | |
parent | f1f71d5654896fa0c16954a0798a58558169b01c (diff) | |
download | patch-attestation-poc-5887d1d68edf7e6b6aed37f9d4f24b2daacaa123.tar.gz |
Add notes on automating developer attestation
The actual attest-and-send tool is still TBD.
Signed-off-by: Konstantin Ryabitsev <konstantin@linuxfoundation.org>
-rw-r--r-- | README.rst | 15 |
1 files changed, 15 insertions, 0 deletions
@@ -594,6 +594,21 @@ Here is with the public key provided in git repository itself:: The structure and nature of the WKD mechanism is entirely up for discussion, along with everything else in this README. +Automating developer attestation +-------------------------------- +The easiest way to automate developer attestation is by providing a +sendmail-compatible "attest-and-send" utility that can be a drop-in +command settable via git's sendemail.smtpServer command. It would +be automatically invoked whenever git-send-email runs and would inject +the X-Patch-Hashes and X-Patch-Sig headers before sending the emails to +the SMTP server specified via the rest of the sendemail configuration +options. + +In addition to creating these headers, this tool can also automatically +add all emails going through it to the developer's personal public-inbox +archive that can act as a separate source of patch data in addition to +mail delivered via the regular means. + Public keys bundled with git repos ---------------------------------- TBA. |