diff options
author | Philipp Sauter | 2023-09-14 17:12:59 +0200 |
---|---|---|
committer | Philipp Sauter | 2023-09-14 17:35:55 +0200 |
commit | 3898ae644800a61e4c9262d8aaaab86d7f003627 (patch) | |
tree | 91e46e67dfe70bc765f5c8e3003243b414e2f233 | |
parent | 099672292fcff9aa8cf1271899ba3dd6233f3bd4 (diff) | |
download | aur-3898ae644800a61e4c9262d8aaaab86d7f003627.tar.gz |
introduce package signature validation
We verify the signature of the GPG signature before installing the
package.
-rw-r--r-- | .SRCINFO | 5 | ||||
-rw-r--r-- | PKGBUILD | 25 |
2 files changed, 16 insertions, 14 deletions
@@ -8,8 +8,9 @@ pkgbase = exoscale-cli makedepends = git makedepends = go makedepends = make - source = exoscale-cli::git+https://github.com/exoscale/cli.git#tag=v1.73.0 - source = git+https://github.com/exoscale/go.mk.git + source = https://github.com/exoscale/cli/releases/download/v1.73.0/exoscale-cli_1.73.0.tar.gz + source = https://github.com/exoscale/cli/releases/download/v1.73.0/exoscale-cli_1.73.0.tar.gz.sig + validpgpkeys = 7100E8BFD6199CE0374CB7F003686F8CDE378D41 sha256sums = SKIP sha256sums = SKIP @@ -10,21 +10,22 @@ url="https://github.com/exoscale/cli" license=('Apache') makedepends=(git go make) -source=("${pkgname}::git+https://github.com/exoscale/cli.git#tag=v${pkgver}" - "git+https://github.com/exoscale/go.mk.git") +validpgpkeys=('7100E8BFD6199CE0374CB7F003686F8CDE378D41') +source=("https://github.com/exoscale/cli/releases/download/v${pkgver}/${pkgname}_${pkgver}.tar.gz" + "https://github.com/exoscale/cli/releases/download/v${pkgver}/${pkgname}_${pkgver}.tar.gz.sig") sha256sums=('SKIP' 'SKIP') -prepare() { - cd "${srcdir}/${pkgname}" - - git submodule init - git config submodule.libs/libdep.url "$srcdir/lib-dependency" - git -c protocol.file.allow=always submodule update -} - build() { - cd "${srcdir}/${pkgname}" + cd "${srcdir}/${pkgname}_${pkgver}" + + # This package builds exo cli from a source tarball. + # But `make build` will bake the latest git tag into the binary. + # To provide this information to the build process we set it here. + git init + git add Makefile + git commit -m "dummy commit" + git tag v${pkgver} make build make completions @@ -32,7 +33,7 @@ build() { } package() { - cd "${srcdir}/${pkgname}" + cd "${srcdir}/${pkgname}_${pkgver}" install -Dm 755 ./bin/exo "${pkgdir}/usr/bin/exo" install -Dm 644 ./contrib/completion/bash/exo -t "${pkgdir}/usr/share/bash-completion/completions/" |