diff --git a/.github/workflows/package-and-publish.yml b/.github/workflows/package-and-publish.yml index 5dc3941d0..75d03d8f0 100644 --- a/.github/workflows/package-and-publish.yml +++ b/.github/workflows/package-and-publish.yml @@ -37,7 +37,7 @@ jobs: should-publish: ${{ steps.extract-version.outputs.should-publish }} release-name: ${{ steps.extract-version.outputs.release-name }} steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v6 - name: Extract version and tag id: extract-version @@ -138,7 +138,7 @@ jobs: runs-on: ${{ matrix.settings.platform }} steps: - name: Checkout - uses: actions/checkout@v4 + uses: actions/checkout@v6 - name: Set Xcode version if: matrix.settings.platform == 'macos-latest' @@ -147,7 +147,7 @@ jobs: xcode-version: latest-stable - name: Setup Node.js ${{ vars.NODE_VERSION }} - uses: actions/setup-node@v4 + uses: actions/setup-node@v6 with: node-version: ${{ vars.NODE_VERSION }} @@ -164,7 +164,7 @@ jobs: - name: Cache node modules id: npm-cache - uses: actions/cache@v4 + uses: actions/cache@v5 with: path: node_modules key: ${{ runner.os }}-build-${{ hashFiles('**/package-lock.json') }} @@ -184,11 +184,7 @@ jobs: echo "repo=${PUBLISH_REPO#*/}" >> $GITHUB_OUTPUT # Windows code signing setup - - name: Install DigiCert Client tools (Windows) - if: matrix.settings.platform == 'windows-latest' - uses: digicert/ssm-code-signing@v1.1.1 - - - name: Setup certificate and set environment variables (Windows) + - name: Setup certificate and environment variables (Windows) if: matrix.settings.platform == 'windows-latest' shell: bash run: | @@ -198,13 +194,16 @@ jobs: echo "SM_CLIENT_CERT_FILE=D:\\Certificate_pkcs12.p12" >> "$GITHUB_ENV" echo "SM_CLIENT_CERT_PASSWORD=${{ secrets.SM_CLIENT_CERT_PASSWORD }}" >> "$GITHUB_ENV" echo "KEYPAIR_ALIAS=${{ secrets.KEYPAIR_ALIAS }}" >> "$GITHUB_ENV" - echo "C:\Program Files (x86)\Windows Kits\10\App Certification Kit" >> $GITHUB_PATH - echo "C:\Program Files (x86)\Microsoft SDKs\Windows\v10.0A\bin\NETFX 4.8 Tools" >> $GITHUB_PATH - echo "C:\Program Files\DigiCert\DigiCert One Signing Manager Tools" >> $GITHUB_PATH + + - name: Install DigiCert Client tools (Windows) + if: matrix.settings.platform == 'windows-latest' + uses: digicert/code-signing-software-trust-action@v1.2.0 + with: + simple-signing-mode: true - name: Define Tauri configuration overrides id: config-overrides - uses: actions/github-script@v7 + uses: actions/github-script@v8 env: BASE_URL: ${{ vars.BASE_URL }} UPDATER_PUBLIC_KEY: ${{ secrets.UPDATER_PUBLIC_KEY }} @@ -280,7 +279,7 @@ jobs: - name: Upload artifact (MacOS) if: matrix.settings.platform == 'macos-latest' - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v7 with: name: ${{ steps.file-info.outputs.name }}-${{ steps.file-info.outputs.architecture }}.dmg path: ${{ steps.file-info.outputs.path }}/${{ steps.file-info.outputs.name }}.dmg @@ -288,7 +287,7 @@ jobs: # Windows release - name: Upload Windows artifact (Windows) if: matrix.settings.platform == 'windows-latest' - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v7 with: name: ${{ steps.file-info.outputs.filename }} path: ${{ steps.file-info.outputs.path }}/${{ steps.file-info.outputs.filename }} @@ -296,7 +295,7 @@ jobs: # Linux release - name: Upload Linux artifact (Linux) if: matrix.settings.platform == 'ubuntu-22.04' - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@v7 with: name: ${{ steps.file-info.outputs.filename }} path: ${{ steps.file-info.outputs.path }}/${{ steps.file-info.outputs.filename }} @@ -308,7 +307,7 @@ jobs: env: RELEASE_ID: ${{ needs.create-release.outputs.releaseId }} steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v6 - name: Publish release run: | diff --git a/deploy/prepareTauriConfig.js b/deploy/prepareTauriConfig.js index 8ce5e5bb9..6bb2e9f56 100644 --- a/deploy/prepareTauriConfig.js +++ b/deploy/prepareTauriConfig.js @@ -24,7 +24,8 @@ export default function prepareTauriConfig() { } if (process.env.KEYPAIR_ALIAS) { - config.bundle.windows.signCommand = `smctl.exe sign --keypair-alias=${process.env.KEYPAIR_ALIAS} --input %1`; + // eslint-disable-next-line @stylistic/max-len + config.bundle.windows.signCommand = `smctl.exe sign --keypair-alias=${process.env.KEYPAIR_ALIAS} --simple --input %1`; } return config;