Verified commits: sign your Git commits and avoid impersonation risk (opens in new tab)

That's useful in certain cases but in most cases within an organisation git repos are already (hopefully!) protected by access control.