mirror of
https://github.com/arx-research/libhalo.git
synced 2026-01-09 13:18:04 -05:00
CI: Bump cosign-installer (#260)
This commit is contained in:
Michał Leszczyński
committed by
GitHub
GitHub
parent
ccd46072f2
commit
e06365947a
4
.github/workflows/prod_build_cli.yml
vendored
4
.github/workflows/prod_build_cli.yml
vendored
@@ -138,7 +138,7 @@ jobs:
|
||||
cd cli/dist
|
||||
tar -pczf ../dist.tgz .
|
||||
- name: Install cosign
|
||||
uses: sigstore/cosign-installer@c3667d99424e7e6047999fb6246c0da843953c65
|
||||
uses: sigstore/cosign-installer@1fc5bd396d372bee37d608f955b336615edf79c8
|
||||
- name: Sign output with cosign
|
||||
run: |
|
||||
echo y | cosign sign-blob ./cli/dist.tgz --output-certificate ./cli/dist.tgz-keyless.pem --output-signature ./cli/dist.tgz-keyless.sig
|
||||
@@ -174,7 +174,7 @@ jobs:
|
||||
with:
|
||||
name: binary-${{ matrix.os }}
|
||||
- name: Install cosign
|
||||
uses: sigstore/cosign-installer@c3667d99424e7e6047999fb6246c0da843953c65
|
||||
uses: sigstore/cosign-installer@1fc5bd396d372bee37d608f955b336615edf79c8
|
||||
- name: Validate signatures from previous stage
|
||||
shell: bash
|
||||
run: |
|
||||
|
||||
4
.github/workflows/prod_build_lib.yml
vendored
4
.github/workflows/prod_build_lib.yml
vendored
@@ -71,7 +71,7 @@ jobs:
|
||||
run: |
|
||||
echo "release_upload_url=$(cat release-upload-url.txt)" >> "$GITHUB_OUTPUT"
|
||||
- name: Install cosign
|
||||
uses: sigstore/cosign-installer@c3667d99424e7e6047999fb6246c0da843953c65
|
||||
uses: sigstore/cosign-installer@1fc5bd396d372bee37d608f955b336615edf79c8
|
||||
- name: Sign libhalo.js with cosign
|
||||
run: |
|
||||
cd ./web/dist
|
||||
@@ -144,7 +144,7 @@ jobs:
|
||||
node-version: '16.x'
|
||||
registry-url: 'https://registry.npmjs.org'
|
||||
- name: Install cosign
|
||||
uses: sigstore/cosign-installer@c3667d99424e7e6047999fb6246c0da843953c65
|
||||
uses: sigstore/cosign-installer@1fc5bd396d372bee37d608f955b336615edf79c8
|
||||
- name: Run npm ci
|
||||
run: npm ci
|
||||
- name: Get package integrity hash
|
||||
|
||||
4
.github/workflows/prod_integrity_check.yml
vendored
4
.github/workflows/prod_integrity_check.yml
vendored
@@ -13,7 +13,7 @@ jobs:
|
||||
runs-on: ubuntu-latest
|
||||
steps:
|
||||
- name: Install cosign
|
||||
uses: sigstore/cosign-installer@c3667d99424e7e6047999fb6246c0da843953c65
|
||||
uses: sigstore/cosign-installer@1fc5bd396d372bee37d608f955b336615edf79c8
|
||||
- name: Get latest version from npm
|
||||
id: get-latest-npm
|
||||
run: |
|
||||
@@ -50,7 +50,7 @@ jobs:
|
||||
packages: read
|
||||
steps:
|
||||
- name: Install cosign
|
||||
uses: sigstore/cosign-installer@c3667d99424e7e6047999fb6246c0da843953c65
|
||||
uses: sigstore/cosign-installer@1fc5bd396d372bee37d608f955b336615edf79c8
|
||||
- name: Get latest version from npm
|
||||
id: get-latest-gh
|
||||
run: |
|
||||
|
||||
Reference in New Issue
Block a user