dd52c48351
- Migrate signing tool from GoTunnel main project - Self-contained, no external dependencies - Updated CI workflow to build locally
41 lines
994 B
YAML
41 lines
994 B
YAML
name: Sign Plugins
|
|
|
|
on:
|
|
push:
|
|
branches: [main]
|
|
paths:
|
|
- 'plugins/**/*.js'
|
|
- 'plugins/**/manifest.json'
|
|
workflow_dispatch:
|
|
|
|
jobs:
|
|
sign:
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/checkout@v4
|
|
|
|
- name: Setup Go
|
|
uses: actions/setup-go@v5
|
|
with:
|
|
go-version: '1.21'
|
|
|
|
- name: Build signtool
|
|
run: go build -o signtool ./tools/signtool
|
|
|
|
- name: Sign plugins
|
|
env:
|
|
SIGNING_KEY: ${{ secrets.PLUGIN_SIGNING_KEY }}
|
|
run: |
|
|
echo "$SIGNING_KEY" > /tmp/private.key
|
|
chmod 600 /tmp/private.key
|
|
bash scripts/sign-all.sh /tmp/private.key
|
|
rm -f /tmp/private.key
|
|
|
|
- name: Commit signatures
|
|
run: |
|
|
git config user.name "GitHub Actions"
|
|
git config user.email "actions@github.com"
|
|
git add -A "plugins/**/*.sig"
|
|
git diff --staged --quiet || git commit -m "chore: update plugin signatures"
|
|
git push
|