Security in Git
Our entitydb is on codeberg.org, a free Git server based on Gitea.
Two-factor authentication requires entering a one-time code or using a physical security key in addition to the password when logging into Codeberg. If the password is compressed, an attacker cannot log in to the account.
Integrity of the connection to Codeberg
When connecting to Codeberg, an SSH connection is often used. To prevent MITM attacks, you can verify the SSH fingerprint.
Sign the commits
To verify the authenticity and integrity of commits, it is recommended to sign them with GPG.