brew install gpg
brew install pinentry-mac
brew install --cask gpg-suite
brew install --cask keybase
Export your public key:
keybase pgp export > keybase-public.key
Export your private key:
keybase pgp export --secret > keybase-private.key
Let's import and edit:
gpg --allow-secret-key-import --import keybase-private.key
gpg --import keybase-public.key
gpg --edit-key MYEMAIL@DOMAIN.COM
Jump onto GPG Keybase tool and edit the Keybase secret and add the additional emails under User ID's in details.
Out of the gnupg shell, update your keybase account with the new public key:
keybase pgp update
Check your new public key and export to your clipboard:
keybase pgp export | pbcopy
Update your github or whatever accounts you need to recognize the new email as "verified" If you see any emails that are "unverified" please be sure to go to your email settings and verify those emails.
Following the instructions on Git to add the GPG keys (https://docs.github.com/en/authentication/managing-commit-signature-verification/telling-git-about-your-signing-key):
gpg --list-secret-keys --keyid-format=long
Add key to Git and replace <<KEY>> with Key Id
git config --global user.signingkey <<KEY>>
git config --global gpg.program $(which gpg)
git config --global commit.gpgsign true
Add shell script for the GPG key
if [ -r ~/.zshrc ]; then echo 'export GPG_TTY=$(tty)' >> ~/.zshrc; \
else echo 'export GPG_TTY=$(tty)' >> ~/.zprofile; fi
Setup Pinentry
echo "pinentry-program $(which pinentry-mac)" >> ~/.gnupg/gpg-agent.conf
gpgconf --kill gpg-agent
killall gpg-agent
pinentry-program /usr/local/bin/pinentry-mac
Test GPG is working
echo 'it works' | gpg --clearsign
Open VSCode, go to Preferences > Settings, and search for git.enableCommitSigning. Turn this setting on, and you’re good to go.