Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Sign our releases #1347

Merged
merged 7 commits into from
Sep 23, 2023
Merged

Sign our releases #1347

merged 7 commits into from
Sep 23, 2023

Conversation

passcod
Copy link
Member

@passcod passcod commented Sep 6, 2023
edited
Loading

This uses an ephemeral key.

It writes the [signing] section to the Cargo.toml just before publish, so the Cargo.toml in the source remains without, which makes --git installs work (just without verifying signatures).

It uses rsign2 so we can install it via binstall (dogfooding!).

@simonsan

This comment was marked as off-topic.

Sign in to view
@passcod

This comment was marked as off-topic.

Sign in to view
@simonsan

This comment was marked as off-topic.

Sign in to view
@NobodyXu NobodyXu mentioned this pull request Sep 17, 2023
Merged
NobodyXu
NobodyXu requested changes Sep 17, 2023
View reviewed changes
.github/workflows/release.yml Outdated Show resolved Hide resolved
Base automatically changed from initial-signing-support to main September 23, 2023 04:16
NobodyXu
NobodyXu requested changes Sep 23, 2023
View reviewed changes
Copy link
Member

@NobodyXu NobodyXu left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Challenge with changing release workflow is how to test it...

I suppose that we can trigger release-build.yml on any PR that modifies it and does a dry-run.

.github/workflows/release-build.yml Show resolved Hide resolved
@passcod passcod marked this pull request as ready for review September 23, 2023 07:35
@NobodyXu
Copy link
Member

It would be great if we can add testing for our release pipeline, though it won't be easy to add so I won't make it a blocker for this PR

@passcod
Copy link
Member Author

passcod commented Sep 23, 2023

yehmmmm I think we'll have to test this one live. I've run the scripts locally simulating the environment as best I can, though, so, not going in totally blind

@passcod passcod added this pull request to the merge queue Sep 23, 2023
Merged via the queue into main with commit ee7fcb3 Sep 23, 2023
30 checks passed
@passcod passcod deleted the signing-releases branch September 23, 2023 08:27
This was referenced Sep 25, 2023
Merged
Merged
Closed
Merged
@NobodyXu NobodyXu mentioned this pull request Sep 26, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@simonsan simonsan simonsan left review comments

@NobodyXu NobodyXu NobodyXu approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@passcod @simonsan @NobodyXu