After you enable GPG verification, GitHub will automatically sign commits you make in GitHub Codespaces, and the commits will have a verified status on GitHub. By default, GPG verification is disabled for codespaces you create. You can choose to allow GPG verification for all repositories or specific repositories. Only enable GPG verification for repositories that you trust. For more information about GitHub-signed commits, see "About commit signature verification."
Once you enable GPG verification, it will immediately take effect for all your codespaces.
No canto superior direito de qualquer página, clique na foto do seu perfil e em Configurações.
Na seção "Código, planejamento e automação" da barra lateral, clique em Codespaces.
Under "GPG verification", select the setting you want for GPG verification.
If you chose "Selected repositories", select the drop-down menu, then click a repository you want enable GPG verification for. Repeat for all repositories you want to enable GPG verification for.
Note: Once you have enabled GPG verification for GitHub Codespaces, you also must append
-S to each commit in order for it to be signed. To do this in Visual Studio Code, ensure the "Git: Enable Commit Signing" option is enabled from the Settings.