mirror of
https://github.com/Xahau/xahaud.git
synced 2025-11-04 10:45:50 +00:00
9e1ccb900e
* adding package signing steps for rpm and deb * first spike at GPG signing with CI and containers * refine ubuntu portion * get correct gpg package version * adding CentOS support * fixing errors in installing gpg on ubuntu * base64 decode the GPG key * fixing line continuations * revised package signing, looking for package artifacts * add dpkg-sig to ubuntu image * sign all deb packges * add passphrase to GPG process * repeat yo slef on dpkg * sign all the rpm packages too * install rpm-sign in the CentOS docker image * loop through rpm files * no need for PIN on GPG signing
17 lines
493 B
Bash
17 lines
493 B
Bash
#!/usr/bin/env sh
|
|
set -ex
|
|
apt -y update
|
|
apt -y install software-properties-common curl git gnupg
|
|
curl -sk -o rippled-pubkeys.txt "${GIT_SIGN_PUBKEYS_URL}"
|
|
gpg --import rippled-pubkeys.txt
|
|
if git verify-commit HEAD; then
|
|
echo "git commit signature check passed"
|
|
else
|
|
echo "git commit signature check failed"
|
|
git log -n 5 --color \
|
|
--pretty=format:'%Cred%h%Creset -%C(yellow)%d%Creset %s %Cgreen(%cr) %C(bold blue)<%an> [%G?]%Creset' \
|
|
--abbrev-commit
|
|
exit 1
|
|
fi
|
|
|