Browse Source

Add: Check Sign Gitlab API

master
Siroco 3 months ago
parent
commit
82be453441
Signed by: siroco GPG Key ID: 1324098302A514B0
  1. 11
      Dockerfile

11
Dockerfile

@ -9,7 +9,7 @@ RUN apt-get update && \
WORKDIR /
ARG GANCIO_VERSION=master
ARG GITLAB_PROJECT=48668
RUN echo "deb https://dl.yarnpkg.com/debian/ stable main" > /etc/apt/sources.list.d/yarn.list
COPY pubkey.gpg /usr/local/share/keyrings/yarn.gpg
@ -21,11 +21,12 @@ RUN gpg --no-default-keyring --keyring ./yarn_keyring.gpg --import /usr/local/sh
RUN apt-get update && \
apt-get install -y --no-install-recommends yarn
RUN git clone https://framagit.org/les/gancio.git && \
RUN COMMIT=`git ls-remote --tags https://framagit.org/les/gancio.git | tail -n1 | cut -f1` && \
VERIFIED=`curl https://framagit.org/api/v4/projects/$GITLAB_PROJECT/repository/commits/$COMMIT/signature | jq '.verification_status'` && \
[ $VERIFIED="verified" ] || exit 1 && \
git clone https://framagit.org/les/gancio.git && \
cd gancio && \
git checkout $GANCIO_VERSION
# TODO: Check Sign
git checkout -b $COMMIT
WORKDIR /gancio

Loading…
Cancel
Save