mirror of
https://github.com/ddworken/hishtory.git
synced 2024-12-01 20:53:13 +01:00
Export the unsigned files for a new theory on how SLSA verification can be done
This commit is contained in:
parent
372e3a8f44
commit
ea6be650ba
2
.github/workflows/slsa-releaser.yml
vendored
2
.github/workflows/slsa-releaser.yml
vendored
@ -55,11 +55,11 @@ jobs:
|
|||||||
uses: softprops/action-gh-release@v1
|
uses: softprops/action-gh-release@v1
|
||||||
if: startsWith(github.ref, 'refs/tags/')
|
if: startsWith(github.ref, 'refs/tags/')
|
||||||
with:
|
with:
|
||||||
# TODO: stop releasing the unsigned files
|
|
||||||
files: |
|
files: |
|
||||||
hishtory-darwin-arm64
|
hishtory-darwin-arm64
|
||||||
hishtory-darwin-arm64-unsigned
|
hishtory-darwin-arm64-unsigned
|
||||||
hishtory-darwin-amd64
|
hishtory-darwin-amd64
|
||||||
|
hishtory-darwin-amd64-unsigned
|
||||||
|
|
||||||
# Upload to GitHub release.
|
# Upload to GitHub release.
|
||||||
upload:
|
upload:
|
||||||
|
@ -21,6 +21,7 @@ def main():
|
|||||||
print("signing...")
|
print("signing...")
|
||||||
os.system("""
|
os.system("""
|
||||||
cp hishtory-darwin-arm64 hishtory-darwin-arm64-unsigned
|
cp hishtory-darwin-arm64 hishtory-darwin-arm64-unsigned
|
||||||
|
cp hishtory-darwin-amd64 hishtory-darwin-amd64-unsigned
|
||||||
echo $MACOS_CERTIFICATE | base64 -d > certificate.p12
|
echo $MACOS_CERTIFICATE | base64 -d > certificate.p12
|
||||||
security create-keychain -p $MACOS_CERTIFICATE_PWD build.keychain
|
security create-keychain -p $MACOS_CERTIFICATE_PWD build.keychain
|
||||||
security default-keychain -s build.keychain
|
security default-keychain -s build.keychain
|
||||||
|
Loading…
Reference in New Issue
Block a user