There is already a convention for signed-off by. I don’t understand either why GitHub is pushing for this, though I have seen this feature before on some repositories before the post.
Edit: Now that I think about it, can see why. I have seen merges where is was good enough to merge, but needed som slight adjustments. Rebase/merge with minor changes would be a good use for this, and would allow for better crediting of both authors.
It's not clear to me what the semantics of Signed-off-by is supposed to be, but at least for some projects (e.g. the Linux kernel), it doesn't imply that you are a co-author.
It makes sense that GitHub would use something new to avoid stepping on toes, and GitHub's mirrors Signed-off-by in implementation as a git commit message trailer.
I love this! As somebody who quite frequently performs pair programming, this is a great feature. I’ve always found it unfair when only one of the two people got to “keep their streak up”, I mean, it’s a group effort after all!
We use "Name & Name <team@company.com>" during pairs/mobs so we don't worry about who gets the credit and waste time rotating authors. It doesn't look great on GitHub but we usually use an IDE to go through commit history anyway.
It doesn't work great for our open source projects though where visibility on GitHub tends to be more important.
I think that `how much code has been changed by developer` is not a good metric for performance. There might be weeks when I'm barely writing any code and getting the most work done.
Issue trackers on the other hand can be good to track performance.
Can we get cryptographically signed commit integrity into the mainstream instead?