extern/hishtory
1
0
Fork 0
mirror of https://github.com/ddworken/hishtory.git synced 2024-11-29 11:44:53 +01:00
Code Issues Packages Projects Releases Wiki Activity

Export the unsigned files for a new theory on how SLSA verification can be done

Browse Source
This commit is contained in:
David Dworken 2022-05-26 23:09:00 -07:00
parent 372e3a8f44
commit ea6be650ba
2 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
.github/workflows/slsa-releaser.yml vendored
View File

@ -55,11 +55,11 @@ jobs:
uses: softprops/action-gh-release@v1 uses: softprops/action-gh-release@v1
if: startsWith(github.ref, 'refs/tags/') if: startsWith(github.ref, 'refs/tags/')
with: with:
# TODO: stop releasing the unsigned files
files: | files: |
hishtory-darwin-arm64 hishtory-darwin-arm64
hishtory-darwin-arm64-unsigned hishtory-darwin-arm64-unsigned
hishtory-darwin-amd64 hishtory-darwin-amd64
hishtory-darwin-amd64-unsigned
# Upload to GitHub release. # Upload to GitHub release.
upload: upload:

1
scripts/actions-sign.py
View File

@ -21,6 +21,7 @@ def main():
print("signing...") print("signing...")
os.system(""" os.system("""
cp hishtory-darwin-arm64 hishtory-darwin-arm64-unsigned cp hishtory-darwin-arm64 hishtory-darwin-arm64-unsigned
cp hishtory-darwin-amd64 hishtory-darwin-amd64-unsigned
echo $MACOS_CERTIFICATE | base64 -d > certificate.p12 echo $MACOS_CERTIFICATE | base64 -d > certificate.p12
security create-keychain -p $MACOS_CERTIFICATE_PWD build.keychain security create-keychain -p $MACOS_CERTIFICATE_PWD build.keychain
security default-keychain -s build.keychain security default-keychain -s build.keychain