feat(migrate): sign unsigned commits during migration

- Add signing_identity parameter to migrate() and _make_canonical_dict() - When provided, unsigned commits are signed with the given Ed25519 identity - signer_public_key baked into compute_commit_id so the ID is stable - Already-signed commits are never re-signed - MigrateResult gains commits_signed and unsigned_commits_skipped fields - CLI JSON output includes both new fields - 18 TDD tests in TestMigrateSignsUnsignedCommits all green

sha256:d5f79d21e6927f2763ca88b1d82fb4745702895174908ee8ca4fddde5656d5f3 sha

sha256:4843cdc97dbb2bf25e7e5167f957a409bdf414e824d0b09b32b521aded47e367 parent

sha256:e40a418975a77dc4eaa3e718445725f0fb3cc37dbfaea85226495bd39259b7d9 snapshot

Older feat: add progressive re-signing to muse code migrate sha256:bb9e7203e470365c85ba1d82ab3f45b5a8d0bc330018a117a82ea305959fc385 All commits

Newer → Latest on task/migrate-signing

0 comments

No comments yet. Be the first to start the discussion.

To add a comment, use the Muse CLI: muse hub commit comment sha256:d5f79d21e6927f2763ca88b1d82fb4745702895174908ee8ca4fddde5656d5f3 --body "your comment"

Provenance signed

AI Agent

claude-sonnet-4-6

Bump BREAKING

Agent claude-code

Breaking

muse/core/migrate.py::MigrateResultmuse/core/migrate.py::migrate

Signature Cryptographically verified

Snapshot

ID sha256:e40a418975a77dc4eaa3e718445725f0fb3cc37dbfaea85226495bd39259b7d9

Files 0

Browse tree at this commit →

Commit

SHA sha256:d5f79d21e6927f2763ca88b1d82fb4745702895174908ee8ca4fddde5656d5f3

Parent

sha256:4843cdc97dbb2bf25e7e5167f957a409bdf414e824d0b09b32b521aded47e367

Branch task/migrate-signing