Harness the power of signify(1) to sign arbitrary git objects
update readme
+3
-3
+3
-3
README.md
+3
-3
README.md
···
42
42
43
43
## In-depth
44
44
45
-
### Brief overview of this program works
45
+
### Brief overview of how this program works
46
46
47
47
`git-signify` writes a tree object to some git repository containing the
48
48
following blobs:
···
54
54
55
55
Where `object` stores the raw (20 byte) object id of some git object
56
56
to be signed, and `signature` stores the signature over `object`. The
57
-
tree's hash is returned by `git signify sign`.
57
+
tree's hash is returned by `git signify raw sign`.
58
58
59
59
### Storing signatures in tags
60
60
···
71
71
The suggested approach to store signatures in tags is the following:
72
72
73
73
```
74
-
$ SIGNATURE_TREE=$(git signify sign -k $SECRET_KEY $OBJECT_TO_SIGN)
74
+
$ SIGNATURE_TREE=$(git signify raw sign -k $SECRET_KEY $OBJECT_TO_SIGN)
75
75
$ SIGNATURE_COMMIT=$(git commit-tree $SIGNATURE_TREE -m Signature)
76
76
$ git tag signature-$OBJECT_TO_SIGN $SIGNATURE_COMMIT
77
77
$ git push --tags