Adds core infrastructure for Git commit signing

[eamodio]

Implements the implementation plan for Phase 1 of Git commit signing support, establishing the foundational architecture for cryptographic signing within the extension.

• Core Infrastructure: Adds the ability to read and write signing configurations directly from Git global/local config, supporting GPG, SSH, and X.509 formats.
• Signature Parsing: Updates the commits provider to lazily fetch and parse signatures from git logs, verifying status (good, bad, expired, etc.) and ownership.
• Commit Creation: Enhances the patch provider to support signing when creating commits and unreachable commits, respecting the user's auto-sign configuration.
• User Interface: Introduces a new status bar controller to display the current signing mode and a setup command to help users configure signing keys.
• Integration: Hooks signing capabilities into the Composer feature, allowing generated commits to be signed.
• Telemetry & Error Handling: Implements specific error handling for common signing issues (missing keys, passphrase failures) and adds telemetry events to track adoption and stability.

[ianhattendorf]

I've pushed up several commits. Still outstanding (highest priority at the top, roughly):

• Signatures are being verified more often than they should be, leading to some delays in the UI
• Need to display an icon on inline blame hovers
• Test X.509 support
• Should users be able to set up signing without an active repo? (Currently the config sub-provider requires a repoPath)

[ianhattendorf]

Regarding the signature icon/tooltip for inline blame hovers: I don't believe it's possible to get a tooltip without making the icon a blue link. Not sure what we want to do here or if I'm missing something, I'll take another look next week.

[augmentcode]

🤖 Augment PR Summary

Summary: Adds foundational infrastructure for Git commit signing support (Phase 1) across GitLens, spanning config management, signature retrieval/parsing, UI indicators, and telemetry.

Changes:

• Adds a new Setup Commit Signing... command with a quick-pick flow to enable signing and set a signing key globally.
• Extends the Git config sub-provider to read/write signing-related keys (e.g., commit.gpgsign, gpg.format, signing programs, SSH allowed signers file).
• Introduces per-commit signature retrieval via git log pretty-format fields and a new GitCommit.getSignature() cache.
• Adds a signature parser for Git’s %G* format specifiers with unit tests covering multiple status/trust cases.
• Updates hover commit formatting to support a ${signature} token and conditionally fetch signature info when enabled.
• Enhances the Commit Details webview to fetch/serialize signature data and renders a new <gl-signature-badge> with tooltip details.
• Updates patch/composer commit creation to optionally sign commits (commit-tree -S) and emits new signing telemetry events for success, setup, and failure reasons.
• Adds new user settings under “Commit Signing” to toggle signature badges and future key generation support.

_{🤖 Was this summary useful? React with 👍 or 👎}

[augmentcode]

Review completed. 4 suggestions posted.

Comment augment review to trigger a new review at any time.

[ianhattendorf]

augment review

[augmentcode]

Review completed. 2 suggestions posted.

Comment augment review to trigger a new review at any time.

[eamodio]

Regarding the signature icon/tooltip for inline blame hovers: I don't believe it's possible to get a tooltip without making the icon a blue link. Not sure what we want to do here or if I'm missing something, I'll take another look next week.

Yeah, only links get tooltips I'm pretty sure

[eamodio]

This is ready IMO, though I've disabled the setup wizard for now.