28 lines
521 B
Bash
Executable File
28 lines
521 B
Bash
Executable File
#!/usr/bin/env bash
|
|
|
|
set -x
|
|
set -eo pipefail
|
|
|
|
. .github/workflows/common.sh
|
|
|
|
get_key() {
|
|
local key=$1
|
|
local server=$2
|
|
gpg --batch --keyserver "${server}" --recv-keys "${key}"
|
|
echo -e "${key}:6:" | gpg --import-ownertrust
|
|
}
|
|
|
|
# verify signature
|
|
. .github/workflows/sigs
|
|
|
|
for key in "${keys[@]}" ; do
|
|
get_key "${key}" keys.openpgp.org || get_key "${key}" keyserver.ubuntu.com
|
|
done
|
|
unset key
|
|
gpg --verify "${METADATA_FILE}.sig"
|
|
|
|
for f in ghcup-*.json ghcup-*.yaml hls-metadata-*.json ; do
|
|
gpg --verify "${f}.sig"
|
|
done
|
|
|