admin/toolkit
1
0
Fork 0
mirror of https://github.com/indetectables-net/toolkit.git synced 2025-06-22 02:40:50 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add sign code

Browse Source
This commit is contained in:
DSR! 2025-05-20 13:36:42 -03:00
parent 18ca1935c8
commit 89653a5b3e
1 changed files with 10 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

20
.github/workflows/sign.yml vendored
View File

@ -39,14 +39,14 @@ jobs:
}); });
return latest.data.tag_name; return latest.data.tag_name;
- name: Download release assets - name: Download release assets via GH CLI
uses: repo-sync/download-release@v2 env:
with: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
token: ${{ secrets.GITHUB_TOKEN }} run: |
owner: ${{ github.repository_owner }} gh release download ${{ steps.tag.outputs.result }} \
repo: ${{ github.repository }} --repo ${{ github.repository }} \
tag: ${{ steps.tag.outputs.result }} --pattern '*.exe' \
pattern: '*.exe' --dir artifacts
- name: Install cosign - name: Install cosign
run: | run: |
@ -66,7 +66,7 @@ jobs:
env: env:
COSIGN_EXPERIMENTAL: '1' COSIGN_EXPERIMENTAL: '1'
run: | run: |
for exe in *.exe; do for exe in artifacts/*.exe; do
./cosign sign-blob \ ./cosign sign-blob \
--identity-token "${{ steps.oidc.outputs.result }}" \ --identity-token "${{ steps.oidc.outputs.result }}" \
"$exe" "$exe"
@ -74,7 +74,7 @@ jobs:
- name: Verify signatures - name: Verify signatures
run: | run: |
for exe in *.exe; do for exe in artifacts/*.exe; do
./cosign verify-blob \ ./cosign verify-blob \
--certificate-identity "https://github.com/${{ github.repository }}" \ --certificate-identity "https://github.com/${{ github.repository }}" \
"$exe" --signature "$exe.sig" "$exe" --signature "$exe.sig"