Add the 1Password/check-signed-commits-action that will leave a handy comment if a PR contains commits that are not signed.