From 647f6a892434cc541db5e101a7c381061f162861 Mon Sep 17 00:00:00 2001
From: David Dworken <david@daviddworken.com>
Date: Thu, 26 May 2022 22:24:56 -0700
Subject: [PATCH] More debugging info for the releaser action

---
 .github/workflows/slsa-releaser.yml | 2 ++
 scripts/actions-sign.py             | 1 +
 2 files changed, 3 insertions(+)

diff --git a/.github/workflows/slsa-releaser.yml b/.github/workflows/slsa-releaser.yml
index ee0ed4d..6d1175d 100644
--- a/.github/workflows/slsa-releaser.yml
+++ b/.github/workflows/slsa-releaser.yml
@@ -55,8 +55,10 @@ jobs:
         uses: softprops/action-gh-release@v1
         if: startsWith(github.ref, 'refs/tags/')
         with:
+        # TODO: stop releasing the unsigned files
           files: |
             hishtory-darwin-arm64
+            hishtory-darwin-arm64-unsigned
             hishtory-darwin-amd64
 
   # Upload to GitHub release.
diff --git a/scripts/actions-sign.py b/scripts/actions-sign.py
index 5435a52..207c72e 100644
--- a/scripts/actions-sign.py
+++ b/scripts/actions-sign.py
@@ -20,6 +20,7 @@ def main():
 
     print("signing...")
     os.system("""
+    cp hishtory-darwin-arm64 hishtory-darwin-arm64-unsigned
     echo $MACOS_CERTIFICATE | base64 -d > certificate.p12
     security create-keychain -p $MACOS_CERTIFICATE_PWD build.keychain
     security default-keychain -s build.keychain