Skip to content
name: Check request of plugin jar addition
on:
pull_request:
paths:
- plugins/**
jobs:
check:
name: check manifest and signature
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
with:
fetch-depth: 2
lfs: true
- name: get changed jar files
id: changed-jar-files
uses: tj-actions/changed-files@v35
with:
files: |
plugins/**/*.jar
- name: get changed files
id: changed-sign-files
uses: tj-actions/changed-files@v35
with:
files: |
plugins/**/*.jar.asc
- run: |
echo "Added jar file: ${{ steps.changed-jar-files.outputs.added_files }}"
echo "Added signature file: ${{ steps.changed-sign-files.outputs.added_files }}"
- run: |
sudo apt install -y gpg
- name: check manifest
run: kotlin ci/check-manifest.main.kts ${{ steps.changed-jar-files.outputs.added_files }} | tee -a $GITHUB_STEP_SUMMARY
- name: download public key
run: |
kotlin ci/import-public-key.main.kts ${GITHUB_ACTOR}
- name: check signature
run: |
gpg --verify --keyring "/tmp/trusteddb.gpg" ${{ steps.changed-sign-files.outputs.added_files }} | tee -a $GITHUB_STEP_SUMMARY