Add verify complete log

2026-06-21 06:23:47 +00:00 · 2026-05-20 16:46:18 -04:00
parent f3b8e180f2
commit 1953bd007b
3 changed files with 5 additions and 3 deletions
@@ -34,6 +34,7 @@ export class LinuxInstaller extends CliInstaller implements Installer {
 			path.join(extractedPath, "op"),
 			path.join(extractedPath, "op.sig"),
 		);
+		core.info("1Password CLI signature verified");

 		core.addPath(extractedPath);
 		core.info("1Password CLI installed");
@@ -37,6 +37,7 @@ export class MacOsInstaller extends CliInstaller implements Installer {

 		core.info("Verifying 1Password CLI signature");
 		await verifyMacOsPackageSignature(pkgWithExtension);
+		core.info("1Password CLI signature verified");

 		const expandDir = "temp-pkg";
 		await execFileAsync("pkgutil", ["--expand", pkgWithExtension, expandDir]);
@@ -14,14 +14,14 @@ export const APPLE_DEVELOPER_TEAM_ID = "2BUA8C4S2C";
 // Append-only: old certs stay listed so historical `op` versions still verify.
 // See https://www.1password.dev/cli/verify.
 export const ALLOWED_MACOS_SIGNING_CERT_FINGERPRINTS = [
-	"CAB578061B0209FB70934DA344EF6FEBCD3279B1C074C54B0D7D555743B9D89F",
-	"141DD87B2B231211F1440849798007DF621DE6EB3DAB985BC964EE9704C4A1C1",
+	"CAB578061B0209FB70934DA344EF6FEBCD3279B1C074C54B0D7D555743B9D89",
+	"141DD87B2B231211F1440849798007DF621DE6EB3DAB985BC964EE9704C4A1C",
 ];

 // 1Password's code-signing GPG key. Used to verify the detached `op.sig`
 // inside the Linux release zip. See https://www.1password.dev/cli/verify.
 export const ONEPASSWORD_GPG_KEY_FINGERPRINT =
-	"3FEF9748469ADBE15DA7CA80AC2D62742012EA22";
+	"3FEF9748469ADBE15DA7CA80AC2D62742012EA2";
 export const ONEPASSWORD_GPG_KEY_URL =
 	"https://downloads.1password.com/linux/keys/1password.asc";