diff --git a/info/ssh-keys.nix b/info/ssh-keys.nix
index 5bf78bf..5726926 100644
--- a/info/ssh-keys.nix
+++ b/info/ssh-keys.nix
@@ -1,4 +1,4 @@
-rec {
+with builtins; rec {
   keys = {
     # yubikey ssh key
     "yubikey" = {
@@ -46,10 +46,17 @@ rec {
         "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICILeBcpPVs12pDnsOPyDVwnwReCbrqzXMF+cV5bWCCa nathan@fusion";
     };
   };
-  list = map (x: x.key) (builtins.attrValues keys);
-  allowedSigners = builtins.concatStringsSep "\n" (map (x:
+  signingKeys = {
+    # Git automation bot
+    "strangerbot" = {
+      key =
+        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINC2cOHgeJaUfwp9DMX6oeIaSfD7pDKN3PUo2+6prC7N strangerbot@oracles";
+      emails = [ "bot@stranger.systems" ];
+    };
+  };
+  list = map (x: x.key) (attrValues keys);
+  allowedSigners = concatStringsSep "\n" (map (x:
     "${
-      builtins.concatStringsSep ","
-      (x.emails or [ "*@mccarty.io" "*@stranger.systems" ])
-    } ${x.key}") (builtins.attrValues keys));
+      concatStringsSep "," (x.emails or [ "*@mccarty.io" "*@stranger.systems" ])
+    } ${x.key}") ((attrValues keys) ++ (attrValues signingKeys)));
 }