Would it be possible to add similar support for GPG keys?

I'm still super interested in this because I'd like to be able to more natively use 1password as the central hub to store keys used to sign published artifacts generated in CI. It'd be super-handy if I could easily generate a new signing subkey and revoke one which was compromised when a CI system's cloud provider gets hacked again, all without having to change a thing about the ci logic. Bonus points for also auto-publishing to one or more keyservers on-change. For one example. Right now I have to locally export a key, import that into 1password as a text field, then have automation fetch the armored key before importing it into a local agent, etc. It's kind of a convoluted process compared to something like telling a package signing process to just use a local key agent which can just speak to 1password connect -- for another example. :) Git commit signing is technically on the list, but more of a side effect to me personally.

Big +1 SSH commit signing is fine until you need to rotate keys. Revoking a GPG key will continue to show commits in GitHub (unsure about GitLab) as "verified (expired)". The only way I've found to do the same with SSH keys is to remove the old key completely, but then commits show as "unverified" which defeats the point of supply chain integrity since it's not possible to distinguish a commit that was signed with an old key, or a commit that was not signed, or signed with another key that's not allowed. The alternative is to not rotate signing keys, but then you compromise supply chain integrity further by not ensuring keys are rotated in a timely fashion.

IMO, GPG is a fairly complex standard that sees use in many many ways. Adding support for all of these myriad ways into 1Password maybe reinventing the wheel because GPG already has a large number of tools available. And these tools are quite modern in their implementation (but often not in their UI/UX). At the same time, I do want to be able to store my GPG keys in 1Password. After all, what I am paying for is having to remember just "one password".

Thanks for sharing your interest svish I appreciate it. I've let the team know this would be a valuable addition to your toolkit. PB-47362504

I think they're hoping everyone storing PGP keys is using them for signing commits and as people discover it can be done with SSH, they'll give up asking for the feature. There are indeed those of us from the '90s still using S/MIME and encrypting blocks to others who want 1Password to be the one stop secret shop.

GPG support? (like SSH) | 1Password Community

86 Replies

Former Member
3 years ago
Really looking forward to that feature!
I'm also using GPG keys to sign git commits to have verified commits, and I have configured the GPG to use Yubikey security key to access the private key. When I experienced the SSH workflow with 1Password, I think it will be awesome to have the same experience with GPG keys as well.
Former Member
3 years ago
Hey @nrfirth - would you be willing to join our Developer Slack Workspace to chat with me about this more? You can https://join.slack.com/t/1password-devs/shared_invite/zt-15k6lhima-GRb5Ga%7Efo7mjS9xPzDaF2A and then send me a DM (Tyler Durkin). I'd love to ask some additional questions if you have the time!
Former Member
3 years ago
I would really appreciate the ability to store and use GPG keys as well. I recently switched to signing git commits with SSH keys instead (though GitHub only just started implementing the ability to use SSH for verified commits in vigilant mode) and 1Password works great there! GPG in 1Password would be icing on the cake!
Former Member
3 years ago
+1
Kitforbes
Occasional Contributor
3 years ago
+1. This would be a great addition!
ionos
Occasional Contributor
3 years ago
+1
Former Member
3 years ago
+1 for GPG. As verified commit in Github requires I am using this several times daily.
Former Member
3 years ago
+1
Former Member
3 years ago
I would love to see this as well!
sullimander
New Contributor
3 years ago
I would love to see this as a feature. Right now I primarily use GPG for git commit signing, and my key lives on an Yubikey, but I would love to have it live in 1Password, and not have to have GPG Suite installed on my Mac.

Forum Discussion

GPG support? (like SSH)

86 Replies

Featured discussions

December 2025 at 1Password: More browser options, easier sign-in, and safer saving and filling

Recent discussions

Meet the 1Password team at KubeCon Europe

1Password Environments Beta is awesome

Critical: op item move caused loss of OTP field (irrecoverable 2FA data)

1password input focus lag with lots of inputs

SSH Agent Forwarding to Remote Mac