Andrew Ayer

Thanks for testing out the Windows branch and reporting this. Unfortunately, I can't figure out what you've changed because of the repository reorganization and several unrelated changes being in the...

Hi, Sorry for the delay in getting back to you. Thanks for the util functions. They look good and I've just pushed them to the revamp branch. (Note that I've...

The problem with using chmod instead of umask is that there's a small window between creating the file and chmoding it when it has insecure permissions. This can actually be...

> Thus, the file is chmoded after its creation and before it is written That's not sufficient. An attacker can still get a file descriptor to the file, and use...

Hi @ccleaud, sorry I haven't had a chance to look at your latest commit yet. I think in the interest of getting 0.4 released soon, Windows support should be considered...

Yeah, this is planned. For now, if you list the contents of the `.git-crypt/keys/default/0/` directory you'll get the full GPG fingerprints of every authorized user.

Yes, the filenames are the fingerprints, not the actual keys.

The `.git-crypt` directory is not encrypted _by git-crypt_ (in fact, git-crypt installs a `.gitattributes` file in `.git-crypt` to override any rules that might cause it to be encrypted inadvertently). That...

git-crypt author here. I maintain the Debian/Ubuntu git-crypt package, so yes it is "official" and OK to use, but note: 1. In general you should not prefer distro packages over...

Unfortunately, my PGP sub-keys have expired and renewing them will be non-trivial (the master key is not readily accessible). I didn't want to delay a release any further while I...