Security in Git
Our entitydb is on codeberg.org, a free Git server based on Gitea.
Two-factor authentication
Two-factor authentication requires entering a one-time code or using a physical security key in addition to the password when logging into Codeberg. If the password is compressed, an attacker cannot log in to the account. - Setting up two-factor authentication - Free authenticator apps on F-Droid
Integrity of the connection to Codeberg
When connecting to Codeberg, an SSH connection is often used. To prevent MITM attacks, you can verify the SSH fingerprint. - Verifying you're connected to Codeberg using SSH fingerprints
Sign the commits
To verify the authenticity and integrity of commits, it is recommended to sign them with GPG. - Signing Your Work - Signing commits