From b8417493ffae0f6a9369cc9a00a8fffc62603545 Mon Sep 17 00:00:00 2001 From: Gabe Rodriguez Date: Tue, 14 Nov 2023 17:44:58 +0100 Subject: [PATCH] Ext publishing on release, active --- .github/workflows/extension-publish.yml | 1 - apps/extension/public/manifest.json | 2 +- docs/publishing.md | 8 ++++++-- 3 files changed, 7 insertions(+), 4 deletions(-) diff --git a/.github/workflows/extension-publish.yml b/.github/workflows/extension-publish.yml index 8bbf50acd9..537238fe2c 100644 --- a/.github/workflows/extension-publish.yml +++ b/.github/workflows/extension-publish.yml @@ -41,4 +41,3 @@ jobs: client-id: ${{ secrets.GOOGLE_CLIENT_ID }} client-secret: ${{ secrets.GOOGLE_CLIENT_SECRET }} refresh-token: ${{ secrets.GOOGLE_REFRESH_TOKEN }} - publish: false diff --git a/apps/extension/public/manifest.json b/apps/extension/public/manifest.json index 56ce758aa9..7cccbeac38 100644 --- a/apps/extension/public/manifest.json +++ b/apps/extension/public/manifest.json @@ -1,7 +1,7 @@ { "manifest_version": 3, "name": "Penumbra wallet", - "version": "2.0.2", + "version": "2.1.0", "description": "For use in interacting with the Penumbra blockchain", "key": "MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvnucOJi878TGZYnTNTrvXd9krAcpSDR/EgHcQhvjNZrKfRRsKA9O0DnbyM492c3hiicYPevRPLPoKsLgVghGDYPr8eNO7ee165keD5XLxq0wpWu14gHEPdQSRNZPLeawLp4s/rUwtzMcxhVIUYYaa2xZri4Tqx9wpR7YR1mQTAL8UsdjyitrnzTM20ciKXq1pd82MU74YaZzrcQCOmcjJtjHFdMEAYme+LuZuEugAgef9RiE/8kLQ6T7W9feYfQOky1OPjBkflpRXRgW6cACdl+MeYhKJCOHijglFsPOXX6AvnoJSeAJYRXOMVJi0ejLKEcrLpaeHgh+1WXUvc5G4wIDAQAB", "action": { diff --git a/docs/publishing.md b/docs/publishing.md index 005d1a35eb..2ff5cbbb81 100644 --- a/docs/publishing.md +++ b/docs/publishing.md @@ -9,8 +9,12 @@ If the publishing pipeline was compromised, a bad actor could upload malicious c #1 - Penumbra Labs [google group](https://groups.google.com/a/penumbralabs.xyz/g/chrome-extension-publishers). This entity is a [group publisher](https://developer.chrome.com/docs/webstore/group-publishers/). Members of the group have publish permissions. Note: For a group member to publish updates, that member must register as a Chrome Web Store developer and pay the one-time registration fee. +Package uploads are done through the [Chrome Web Store Developer Dashboard](https://chrome.google.com/webstore/devconsole/). #2 - Github CI/CD -Upon a github release, the pipeline will trigger packaging and publishing the extension code for the main branch. -The credentials for the have been generated in the [penumbra-web google cloud project](https://console.cloud.google.com/apis/credentials?project=penumbra-web&supportedpurview=project). +Upon a github release, the `penumbra-zone/penumbra-labs` github team will be pinged for a review of the release. +Any one of the members can approve it. Upon doing so, the pipeline will trigger packaging and publishing the extension code for the main branch. See github action [here](../.github/workflows/extension-publish.yml). +The credentials for this have been generated in the [penumbra-web google cloud project](https://console.cloud.google.com/apis/credentials?project=penumbra-web&supportedpurview=project). + +Note: there is a Chrome review process that typically takes 1-2 days.