Best practice around agentic coding tools is to keep them on a short leash, and allowing them to make git commits and pushes is varying the length of that leash. The problem is that it's a pain to handle the git workflow yourself, so inevitably it's easy to succumb to temptation and let the agent do the work for you.

At the same time, managing multiple Git identities on one machine is also painful because of the overhead of managing SSH keys. Secretive is a tool that does this for you, and comes with the added bonus that you can configure it to demand authorisation before using the keys. That means you have to approve pushes to Git repos, and if you're using a Mac you can use the TouchID sensor for this.

Combine the two, and you've got a fail-safe / early warning system - the agent can't push until you've approved it, and you're not only prompted to do so, you have to reach out to the keyboard and touch something physically.