Add support for SSH signatures (#504)
The has_valid_signatures and has_valid_signatures_by predicates now check the validity of SSH commit signatures. Contributed by @fpoussin.
Other Changes
- Improve review dismissal behavior for policies where only some rules set
invalidate_on_pushtotrue(#577) - Update dependencies and build tools
Compatibility ⚠️
If you use Policy Bot with GitHub Enterprise, we now require GitHub Enterprise 3.7 or later due to the use of GraphQL queries that select SSH signature fields. Version v1.28.0 is the last release that supports GitHub Enterprise 3.6 and older.