1Password/load-secrets-action
1
0
Fork 0
mirror of https://github.com/1Password/load-secrets-action.git synced 2026-06-21 06:23:47 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add verify complete log

Browse Source
This commit is contained in:
Jill Regan
2026-05-20 16:46:18 -04:00
parent f3b8e180f2
commit 1953bd007b
3 changed files with 5 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files
src/op-cli-installer/github-action/cli-installer/linux.ts
+1
View File
@@ -34,6 +34,7 @@ export class LinuxInstaller extends CliInstaller implements Installer {
path.join(extractedPath, "op"), path.join(extractedPath, "op"),
path.join(extractedPath, "op.sig"), path.join(extractedPath, "op.sig"),
); );
core.info("1Password CLI signature verified");
core.addPath(extractedPath); core.addPath(extractedPath);
core.info("1Password CLI installed"); core.info("1Password CLI installed");
src/op-cli-installer/github-action/cli-installer/macos.ts
+1
View File
@@ -37,6 +37,7 @@ export class MacOsInstaller extends CliInstaller implements Installer {
core.info("Verifying 1Password CLI signature"); core.info("Verifying 1Password CLI signature");
await verifyMacOsPackageSignature(pkgWithExtension); await verifyMacOsPackageSignature(pkgWithExtension);
core.info("1Password CLI signature verified");
const expandDir = "temp-pkg"; const expandDir = "temp-pkg";
await execFileAsync("pkgutil", ["--expand", pkgWithExtension, expandDir]); await execFileAsync("pkgutil", ["--expand", pkgWithExtension, expandDir]);
src/op-cli-installer/github-action/cli-installer/signature.ts
+3 -3
View File
@@ -14,14 +14,14 @@ export const APPLE_DEVELOPER_TEAM_ID = "2BUA8C4S2C";
// Append-only: old certs stay listed so historical `op` versions still verify. // Append-only: old certs stay listed so historical `op` versions still verify.
// See https://www.1password.dev/cli/verify. // See https://www.1password.dev/cli/verify.
export const ALLOWED_MACOS_SIGNING_CERT_FINGERPRINTS = [ export const ALLOWED_MACOS_SIGNING_CERT_FINGERPRINTS = [
"CAB578061B0209FB70934DA344EF6FEBCD3279B1C074C54B0D7D555743B9D89F", "CAB578061B0209FB70934DA344EF6FEBCD3279B1C074C54B0D7D555743B9D89",
"141DD87B2B231211F1440849798007DF621DE6EB3DAB985BC964EE9704C4A1C1", "141DD87B2B231211F1440849798007DF621DE6EB3DAB985BC964EE9704C4A1C",
]; ];
// 1Password's code-signing GPG key. Used to verify the detached `op.sig` // 1Password's code-signing GPG key. Used to verify the detached `op.sig`
// inside the Linux release zip. See https://www.1password.dev/cli/verify. // inside the Linux release zip. See https://www.1password.dev/cli/verify.
export const ONEPASSWORD_GPG_KEY_FINGERPRINT = export const ONEPASSWORD_GPG_KEY_FINGERPRINT =
"3FEF9748469ADBE15DA7CA80AC2D62742012EA22"; "3FEF9748469ADBE15DA7CA80AC2D62742012EA2";
export const ONEPASSWORD_GPG_KEY_URL = export const ONEPASSWORD_GPG_KEY_URL =
"https://downloads.1password.com/linux/keys/1password.asc"; "https://downloads.1password.com/linux/keys/1password.asc";