2020-05-03 21:09:41 +02:00
|
|
|
name: ci
|
|
|
|
|
2023-05-06 23:46:50 +02:00
|
|
|
concurrency:
|
|
|
|
group: ${{ github.workflow }}-${{ github.ref }}
|
|
|
|
cancel-in-progress: true
|
|
|
|
|
2020-05-03 21:09:41 +02:00
|
|
|
on:
|
2020-05-24 01:14:15 +02:00
|
|
|
schedule:
|
2021-10-15 13:40:04 +02:00
|
|
|
- cron: '0 10 * * *'
|
2020-05-03 21:09:41 +02:00
|
|
|
push:
|
|
|
|
branches:
|
2021-01-29 12:29:31 +01:00
|
|
|
- 'master'
|
|
|
|
- 'releases/v*'
|
2021-03-30 20:00:40 +02:00
|
|
|
tags:
|
|
|
|
- 'v*'
|
2021-01-29 12:29:31 +01:00
|
|
|
pull_request:
|
|
|
|
branches:
|
|
|
|
- 'master'
|
2021-03-30 20:00:40 +02:00
|
|
|
- 'releases/v*'
|
2020-05-03 21:09:41 +02:00
|
|
|
|
|
|
|
jobs:
|
2021-11-19 12:54:41 +01:00
|
|
|
gpg:
|
|
|
|
runs-on: ubuntu-latest
|
|
|
|
steps:
|
|
|
|
-
|
|
|
|
name: GPG conf
|
|
|
|
run: |
|
|
|
|
cat ~/.gnupg/gpg.conf || true
|
|
|
|
|
2020-05-18 17:18:07 +02:00
|
|
|
armored:
|
2020-05-03 21:35:54 +02:00
|
|
|
runs-on: ${{ matrix.os }}
|
|
|
|
strategy:
|
|
|
|
fail-fast: false
|
|
|
|
matrix:
|
2021-10-15 13:40:04 +02:00
|
|
|
key:
|
|
|
|
- test-key
|
|
|
|
- test-subkey
|
2021-08-10 09:28:13 +02:00
|
|
|
global:
|
|
|
|
- false
|
|
|
|
- true
|
2020-05-03 21:35:54 +02:00
|
|
|
os:
|
|
|
|
- ubuntu-latest
|
|
|
|
- macOS-latest
|
2020-05-06 00:31:46 +02:00
|
|
|
- windows-latest
|
2021-10-15 13:40:04 +02:00
|
|
|
include:
|
|
|
|
- key: test-subkey
|
|
|
|
fingerprint: C17D11ADF199F12A30A0910F1F80449BE0B08CB8
|
2020-05-03 21:09:41 +02:00
|
|
|
steps:
|
|
|
|
-
|
|
|
|
name: Checkout
|
2023-09-05 05:14:02 +00:00
|
|
|
uses: actions/checkout@v4
|
2021-10-15 13:40:04 +02:00
|
|
|
-
|
|
|
|
name: GPG conf
|
2023-11-14 05:50:47 +00:00
|
|
|
uses: actions/github-script@v7
|
2021-10-15 13:40:04 +02:00
|
|
|
with:
|
|
|
|
script: |
|
|
|
|
const fs = require('fs');
|
|
|
|
const gnupgfolder = `${require('os').homedir()}/.gnupg`;
|
|
|
|
if (!fs.existsSync(gnupgfolder)){
|
|
|
|
fs.mkdirSync(gnupgfolder);
|
|
|
|
}
|
2023-05-06 18:20:11 +02:00
|
|
|
fs.chmodSync(gnupgfolder, '0700');
|
2021-10-15 13:40:04 +02:00
|
|
|
fs.copyFile('__tests__/fixtures/gpg.conf', `${gnupgfolder}/gpg.conf`, (err) => {
|
|
|
|
if (err) throw err;
|
|
|
|
});
|
2020-05-12 20:18:51 +02:00
|
|
|
-
|
2020-05-12 20:48:02 +02:00
|
|
|
name: Get test key and passphrase
|
2023-11-14 05:50:47 +00:00
|
|
|
uses: actions/github-script@v7
|
2020-05-12 20:30:44 +02:00
|
|
|
id: test
|
2020-05-12 20:36:05 +02:00
|
|
|
with:
|
|
|
|
script: |
|
2020-05-12 20:37:28 +02:00
|
|
|
const fs = require('fs');
|
2021-10-15 13:40:04 +02:00
|
|
|
core.setOutput('pgp', fs.readFileSync('__tests__/fixtures/${{ matrix.key }}.pgp', {encoding: 'utf8'}));
|
|
|
|
core.setOutput('passphrase', fs.readFileSync('__tests__/fixtures/${{ matrix.key }}.pass', {encoding: 'utf8'}));
|
2020-05-03 21:09:41 +02:00
|
|
|
-
|
2020-05-18 17:18:07 +02:00
|
|
|
name: Import GPG
|
2020-05-03 21:09:41 +02:00
|
|
|
uses: ./
|
2020-05-04 20:59:11 +02:00
|
|
|
with:
|
2021-09-05 01:12:28 +02:00
|
|
|
gpg_private_key: ${{ steps.test.outputs.pgp }}
|
2020-09-06 22:03:16 +02:00
|
|
|
passphrase: ${{ steps.test.outputs.passphrase }}
|
2023-05-06 18:20:11 +02:00
|
|
|
trust_level: 5
|
2021-09-05 01:12:28 +02:00
|
|
|
git_config_global: ${{ matrix.global }}
|
|
|
|
git_user_signingkey: true
|
|
|
|
git_commit_gpgsign: true
|
|
|
|
git_tag_gpgsign: true
|
|
|
|
git_push_gpgsign: if-asked
|
2021-10-15 13:40:04 +02:00
|
|
|
fingerprint: ${{ matrix.fingerprint }}
|
2020-05-07 20:46:52 +02:00
|
|
|
-
|
2021-10-15 13:40:04 +02:00
|
|
|
name: List keys
|
2020-05-07 20:46:52 +02:00
|
|
|
run: |
|
2021-10-15 13:40:04 +02:00
|
|
|
gpg -K
|
|
|
|
shell: bash
|
2020-05-18 17:18:07 +02:00
|
|
|
|
|
|
|
base64:
|
|
|
|
runs-on: ${{ matrix.os }}
|
|
|
|
strategy:
|
|
|
|
fail-fast: false
|
|
|
|
matrix:
|
2021-10-15 13:40:04 +02:00
|
|
|
key:
|
|
|
|
- test-key
|
|
|
|
- test-subkey
|
2020-05-18 17:18:07 +02:00
|
|
|
os:
|
|
|
|
- ubuntu-latest
|
|
|
|
- macOS-latest
|
|
|
|
- windows-latest
|
2021-10-15 13:40:04 +02:00
|
|
|
include:
|
|
|
|
- key: test-subkey
|
|
|
|
fingerprint: C17D11ADF199F12A30A0910F1F80449BE0B08CB8
|
2020-05-18 17:18:07 +02:00
|
|
|
steps:
|
|
|
|
-
|
|
|
|
name: Checkout
|
2023-09-05 05:14:02 +00:00
|
|
|
uses: actions/checkout@v4
|
2020-05-18 17:15:05 +02:00
|
|
|
-
|
2020-05-18 17:18:07 +02:00
|
|
|
name: Get test key and passphrase
|
2023-11-14 05:50:47 +00:00
|
|
|
uses: actions/github-script@v7
|
2020-05-18 17:18:07 +02:00
|
|
|
id: test
|
|
|
|
with:
|
|
|
|
script: |
|
|
|
|
const fs = require('fs');
|
2021-10-15 13:40:04 +02:00
|
|
|
core.setOutput('pgp-base64', fs.readFileSync('__tests__/fixtures/${{ matrix.key }}-base64.pgp', {encoding: 'utf8'}));
|
|
|
|
core.setOutput('passphrase', fs.readFileSync('__tests__/fixtures/${{ matrix.key }}.pass', {encoding: 'utf8'}));
|
2020-05-18 17:18:07 +02:00
|
|
|
-
|
|
|
|
name: Import GPG
|
2020-05-18 17:15:05 +02:00
|
|
|
uses: ./
|
|
|
|
with:
|
2021-09-05 01:12:28 +02:00
|
|
|
gpg_private_key: ${{ steps.test.outputs.pgp-base64 }}
|
2020-09-06 22:03:16 +02:00
|
|
|
passphrase: ${{ steps.test.outputs.passphrase }}
|
2021-09-05 01:12:28 +02:00
|
|
|
git_user_signingkey: true
|
|
|
|
git_commit_gpgsign: true
|
|
|
|
git_tag_gpgsign: true
|
|
|
|
git_push_gpgsign: if-asked
|
2021-10-15 13:40:04 +02:00
|
|
|
fingerprint: ${{ matrix.fingerprint }}
|
2023-05-06 18:20:11 +02:00
|
|
|
|
|
|
|
trust:
|
|
|
|
runs-on: ${{ matrix.os }}
|
|
|
|
strategy:
|
|
|
|
fail-fast: false
|
|
|
|
matrix:
|
|
|
|
key:
|
|
|
|
- test-key
|
|
|
|
level:
|
|
|
|
- ''
|
|
|
|
- 5
|
|
|
|
- 4
|
|
|
|
- 3
|
|
|
|
- 2
|
|
|
|
- 1
|
|
|
|
os:
|
|
|
|
- ubuntu-latest
|
|
|
|
- macOS-latest
|
|
|
|
- windows-latest
|
|
|
|
steps:
|
|
|
|
-
|
|
|
|
name: Checkout
|
2023-09-05 05:14:02 +00:00
|
|
|
uses: actions/checkout@v4
|
2023-05-06 18:20:11 +02:00
|
|
|
-
|
|
|
|
name: GPG conf
|
2023-11-14 05:50:47 +00:00
|
|
|
uses: actions/github-script@v7
|
2023-05-06 18:20:11 +02:00
|
|
|
with:
|
|
|
|
script: |
|
|
|
|
const fs = require('fs');
|
|
|
|
const gnupgfolder = `${require('os').homedir()}/.gnupg`;
|
|
|
|
if (!fs.existsSync(gnupgfolder)){
|
|
|
|
fs.mkdirSync(gnupgfolder);
|
|
|
|
}
|
|
|
|
fs.chmodSync(gnupgfolder, '0700');
|
|
|
|
fs.copyFile('__tests__/fixtures/gpg.conf', `${gnupgfolder}/gpg.conf`, (err) => {
|
|
|
|
if (err) throw err;
|
|
|
|
});
|
|
|
|
-
|
|
|
|
name: Get test key and passphrase
|
2023-11-14 05:50:47 +00:00
|
|
|
uses: actions/github-script@v7
|
2023-05-06 18:20:11 +02:00
|
|
|
id: test
|
|
|
|
with:
|
|
|
|
script: |
|
|
|
|
const fs = require('fs');
|
|
|
|
core.setOutput('pgp', fs.readFileSync('__tests__/fixtures/${{ matrix.key }}.pgp', {encoding: 'utf8'}));
|
|
|
|
core.setOutput('passphrase', fs.readFileSync('__tests__/fixtures/${{ matrix.key }}.pass', {encoding: 'utf8'}));
|
|
|
|
-
|
|
|
|
name: Import GPG
|
|
|
|
id: import_gpg
|
|
|
|
uses: ./
|
|
|
|
with:
|
|
|
|
gpg_private_key: ${{ steps.test.outputs.pgp }}
|
|
|
|
passphrase: ${{ steps.test.outputs.passphrase }}
|
|
|
|
trust_level: ${{ matrix.level }}
|
|
|
|
-
|
|
|
|
name: List trust values
|
|
|
|
run: |
|
|
|
|
gpg --export-ownertrust
|
|
|
|
shell: bash
|