docs/content/codespaces/managing-your-codespaces/managing-gpg-verification-for-codespaces.md

title, intro, product, versions, type, topics, redirect_from, shortTitle

title	intro	product	versions	type	topics	redirect_from	shortTitle
Managing GPG verification for Codespaces	You can allow {% data variables.product.company_short %} to automatically use GPG to sign commits you make in your codespaces, so other people can be confident that the changes come from a trusted source.	{% data reusables.gated-features.codespaces %}	fpt *	how_to	Codespaces Developer Security	/github/developing-online-with-codespaces/managing-gpg-verification-for-codespaces /codespaces/working-with-your-codespace/managing-gpg-verification-for-codespaces	GPG verification

After you enable GPG verification, {% data variables.product.company_short %} will automatically sign commits you make in {% data variables.product.prodname_codespaces %}, and the commits will have a verified status on {% data variables.product.product_name %}. By default, GPG verification is disabled for codespaces you create. You can choose to allow GPG verification for all repositories or specific repositories. Only enable GPG verification for repositories that you trust. For more information about {% data variables.product.product_name %}-signed commits, see "About commit signature verification."

Once you enable GPG verification, it will immediately take effect for all your codespaces.

{% data reusables.user_settings.access_settings %} {% data reusables.user_settings.codespaces-tab %}

1. Under "GPG verification", select the setting you want for GPG verification.
2. If you chose "Selected repositories", select the drop-down menu, then click a repository you want enable GPG verification for. Repeat for all repositories you want to enable GPG verification for.