top | item 42327224 (no title) 1kaizen | 1 year ago Yea. Why cant github actions build these artifacts? discuss order hn newest Ahrotahn|1 year ago It does! That warning is for a different repo that allows community contribution:https://github.com/ungoogled-software/ungoogled-chromium-bin... winkelmann|1 year ago GitHub now offers "artifact attestation"[1], which would be ideal for this use case. It records what build process binaries originated from, so they can still be published elsewhere while remaining verifiable.[1] https://github.blog/changelog/2024-06-25-artifact-attestatio... vodkapump|1 year ago It needs way too much space to build with github actions lifesaverluke|1 year ago It's possible! I do it here: https://github.com/chromium-for-lambda/chromium-binaries/act... load replies (1) keepamovin|1 year ago Because of the code signing for macOS winkelmann|1 year ago I haven't tried it myself, but it seems like that should be possible?> You can sign Xcode apps within your continuous integration (CI) workflow by installing an Apple code signing certificate on GitHub Actions runners.https://docs.github.com/en/actions/use-cases-and-examples/de... load replies (1) Brian_K_White|1 year ago That is chef's kiss right there.Security or authenticity is prevented by a security or authenticity policy. load replies (1)
Ahrotahn|1 year ago It does! That warning is for a different repo that allows community contribution:https://github.com/ungoogled-software/ungoogled-chromium-bin...
winkelmann|1 year ago GitHub now offers "artifact attestation"[1], which would be ideal for this use case. It records what build process binaries originated from, so they can still be published elsewhere while remaining verifiable.[1] https://github.blog/changelog/2024-06-25-artifact-attestatio...
vodkapump|1 year ago It needs way too much space to build with github actions lifesaverluke|1 year ago It's possible! I do it here: https://github.com/chromium-for-lambda/chromium-binaries/act... load replies (1)
lifesaverluke|1 year ago It's possible! I do it here: https://github.com/chromium-for-lambda/chromium-binaries/act... load replies (1)
keepamovin|1 year ago Because of the code signing for macOS winkelmann|1 year ago I haven't tried it myself, but it seems like that should be possible?> You can sign Xcode apps within your continuous integration (CI) workflow by installing an Apple code signing certificate on GitHub Actions runners.https://docs.github.com/en/actions/use-cases-and-examples/de... load replies (1) Brian_K_White|1 year ago That is chef's kiss right there.Security or authenticity is prevented by a security or authenticity policy. load replies (1)
winkelmann|1 year ago I haven't tried it myself, but it seems like that should be possible?> You can sign Xcode apps within your continuous integration (CI) workflow by installing an Apple code signing certificate on GitHub Actions runners.https://docs.github.com/en/actions/use-cases-and-examples/de... load replies (1)
Brian_K_White|1 year ago That is chef's kiss right there.Security or authenticity is prevented by a security or authenticity policy. load replies (1)
Ahrotahn|1 year ago
https://github.com/ungoogled-software/ungoogled-chromium-bin...
winkelmann|1 year ago
[1] https://github.blog/changelog/2024-06-25-artifact-attestatio...
vodkapump|1 year ago
lifesaverluke|1 year ago
keepamovin|1 year ago
winkelmann|1 year ago
> You can sign Xcode apps within your continuous integration (CI) workflow by installing an Apple code signing certificate on GitHub Actions runners.
https://docs.github.com/en/actions/use-cases-and-examples/de...
Brian_K_White|1 year ago
Security or authenticity is prevented by a security or authenticity policy.