msb-public
/
helm
mirror of https://github.com/helm/helm
1
0
Code Issues Projects Releases Wiki Activity

do not auto-import GPG keys

Browse Source 
Signed-off-by: Josh Dolitsky <393494+jdolitsky@users.noreply.github.com>
pull/7944/head
Josh Dolitsky 6 years ago
parent 2e45800b4b
commit 420da12d9d
1 changed files with 2 additions and 10 deletions
Show Stats Download Patch File Download Diff File

12
scripts/get-helm-3
Unescape View File

@ -172,8 +172,8 @@ verifyChecksum() {
echo "Done." echo "Done."
} }
# verifySignatures obtains the KEYS and signature .asc files from GitHub, # verifySignatures obtains the signature .asc files from the GitHub release,
# then verifies that the release artifacts were signed by a valid key. # then verifies that the release artifacts were signed by a trusted key.
verifySignatures() { verifySignatures() {
if [ "${HAS_GPG}" != "true" ]; then if [ "${HAS_GPG}" != "true" ]; then
echo "In order to verify signatures, gpg must first be installed." echo "In order to verify signatures, gpg must first be installed."
@ -181,18 +181,10 @@ verifySignatures() {
exit 1 exit 1
fi fi
printf "Verifying signatures... " printf "Verifying signatures... "
local keys_filename="KEYS"
local github_keys_url="https://raw.githubusercontent.com/helm/helm/master/${keys_filename}"
if [ "${HAS_CURL}" == "true" ]; then
curl -SsL "${github_keys_url}" -o "${HELM_TMP_ROOT}/${keys_filename}"
elif [ "${HAS_WGET}" == "true" ]; then
wget -q -O "${github_keys_url}" "${HELM_TMP_ROOT}/${keys_filename}"
fi
local gpg_stderr_device="/dev/null" local gpg_stderr_device="/dev/null"
if [ "${DEBUG}" == "true" ]; then if [ "${DEBUG}" == "true" ]; then
gpg_stderr_device="/dev/stderr" gpg_stderr_device="/dev/stderr"
fi fi
gpg --import "${HELM_TMP_ROOT}/${keys_filename}" 2> "${gpg_stderr_device}"
local github_release_url="https://github.com/helm/helm/releases/download/${TAG}" local github_release_url="https://github.com/helm/helm/releases/download/${TAG}"
if [ "${HAS_CURL}" == "true" ]; then if [ "${HAS_CURL}" == "true" ]; then
curl -SsL "${github_release_url}/helm-${TAG}-${OS}-${ARCH}.tar.gz.sha256.asc" -o "${HELM_TMP_ROOT}/helm-${TAG}-${OS}-${ARCH}.tar.gz.sha256.asc" curl -SsL "${github_release_url}/helm-${TAG}-${OS}-${ARCH}.tar.gz.sha256.asc" -o "${HELM_TMP_ROOT}/helm-${TAG}-${OS}-${ARCH}.tar.gz.sha256.asc"

Write Preview
Loading…
Cancel
Save