Skip to main content

This version of GitHub Enterprise Server will be discontinued on 2024-03-07. No patch releases will be made, even for critical security issues. For better performance, improved security, and new features, upgrade to the latest version of GitHub Enterprise Server. For help with the upgrade, contact GitHub Enterprise support.

Checking your commit and tag signature verification status

You can check the verification status of your commit and tag signatures on GitHub Enterprise Server.

Checking your commit signature verification status

  1. On GitHub Enterprise Server, navigate to your pull request.

  2. On the pull request, click Commits.

    Screenshot of the title and tabs on a pull request. The "Commits" tab is outlined in dark orange.

  3. Next to your commit's abbreviated commit hash, there is a box that shows whether your commit signature is verified or unverified.

    Screenshot of a commit in the commit list for a repository. "Verified" is highlighted with an orange outline.

  4. To view more detailed information about the commit signature, click Verified or Unverified.

    GPG signed commits will show the ID of the key that was used. SSH signed commits will show the signature of the public key that was used.

Checking your tag signature verification status

  1. On your GitHub Enterprise Server instance, navigate to the main page of the repository.

  2. To the right of the list of files, click Releases.

    Screenshot of the main page of a repository. A link, labeled "Releases", is highlighted with an orange outline.

  3. At the top of the Releases page, click Tags.

  4. Next to your tag description, there is a box that shows whether your tag signature is verified or unverified.

    Screenshot of a tag in the tag list for a repository. "Verified" is highlighted with an orange outline.

  5. To view more detailed information about the tag signature, click Verified or Unverified.

Further reading