extern/hishtory
1
0
Fork 0
mirror of https://github.com/ddworken/hishtory.git synced 2025-06-20 11:57:50 +02:00
Code Issues Packages Projects Releases Wiki Activity

Capture stdout for slsa validation

Browse Source
This commit is contained in:
David Dworken 2023-11-05 14:09:22 -08:00
parent 1264388ea9
commit 1cfaa13b74
No known key found for this signature in database
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
scripts/actions-validate.py
View File

@ -22,14 +22,14 @@ def validate_slsa(hishtory_binary: str) -> None:
slsa_attestation_file, slsa_attestation_file,
"--is_macos=True", "--is_macos=True",
f"--macos_unsigned_binary={unsigned_filename}" f"--macos_unsigned_binary={unsigned_filename}"
]).decode('utf-8') ], stderr=subprocess.STDOUT).decode('utf-8')
else: else:
out = subprocess.check_output([ out = subprocess.check_output([
hishtory_binary, hishtory_binary,
"validate-binary", "validate-binary",
filename, filename,
slsa_attestation_file slsa_attestation_file
]).decode('utf-8') ], stderr=subprocess.STDOUT).decode('utf-8')
assert "Verified signature against tlog entry" in out, out assert "Verified signature against tlog entry" in out, out
assert "Verified build using builder" in out, out assert "Verified build using builder" in out, out