A Git Horror Story: Repository Integrity With Signed Commits.
This is an intense and extremely detailed look at what can potentially go wrong with our beloved Git repositories. I really like how this piece was put together by first setting the stage and then dissecting the environment piece by piece, outlining what can possibly go wrong at every level. It’s a long read, but it’s worth it.