git-hardening

2 Commits 3 Branches 5 Tags

Author	SHA1	Message	Date
Flo	9b7cfd8f3b	Address spec review findings Fix incorrect CVE reference for core.fsmonitor, clarify bash/zsh compatibility (shebang is bash, works from zsh sessions), fix -y mode signing behavior to not break commits when no key exists, clarify submodule.recurse scope, add pull.rebase conflict warning, improve SSH config and credential helper detection specifics, add FIDO2 touch prompt, and clarify audit exit code for missing signing keys. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-25 14:40:29 +01:00
Flo	1efd68a408	Add design spec for git-harden.sh Interactive shell script that audits and hardens global git config with security-focused defaults: object integrity, protocol restrictions, filesystem protection, hook control, SSH signing with FIDO2 support, and credential security. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-25 13:50:43 +01:00

Author

SHA1

Message

Date

Flo

9b7cfd8f3b

Address spec review findings

Fix incorrect CVE reference for core.fsmonitor, clarify bash/zsh
compatibility (shebang is bash, works from zsh sessions), fix -y mode
signing behavior to not break commits when no key exists, clarify
submodule.recurse scope, add pull.rebase conflict warning, improve
SSH config and credential helper detection specifics, add FIDO2
touch prompt, and clarify audit exit code for missing signing keys.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-03-25 14:40:29 +01:00

Flo

1efd68a408

Add design spec for git-harden.sh

Interactive shell script that audits and hardens global git config
with security-focused defaults: object integrity, protocol restrictions,
filesystem protection, hook control, SSH signing with FIDO2 support,
and credential security.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-03-25 13:50:43 +01:00