In the mean time we have enabled the DCO check to a number of repositories (see https://github.com/ros2/ros2cli/pull/210#issuecomment-474900128 for the complete list) and added a note about the DCO to the CONTRIBUTING.md file to each of these repositories.
Happy signing off 