Skip to content

Merge pull request #625 from sigstore/fix-tuf-invalid-sigs #1252

Merge pull request #625 from sigstore/fix-tuf-invalid-sigs

Merge pull request #625 from sigstore/fix-tuf-invalid-sigs #1252

Workflow file for this run

name: Conformance Tests
on:
push:
branches:
- '**'
pull_request:
jobs:
conformance:
strategy:
matrix:
java-version: [11, 17]
fail-fast: false
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
- name: Set up JDK ${{ matrix.java-version }}
uses: actions/setup-java@9704b39bf258b59bc04b50fa2dd55e9ed76b47a8 # v4.1.0
with:
java-version: ${{ matrix.java-version }}
distribution: 'temurin'
- name: Setup Gradle
uses: gradle/actions/setup-gradle@v3
- name: Build sigstore-java cli
run: ./gradlew :sigstore-cli:build
- name: Unpack sigstore-java distribution
run: tar -xvf ${{ github.workspace }}/sigstore-cli/build/distributions/sigstore-cli-*.tar --strip-components 1
- uses: sigstore/sigstore-conformance@7375951316d6b28d07f7406c01e1dc7de2a75ce7 # v0.0.10
with:
entrypoint: ${{ github.workspace }}/bin/sigstore-cli
xfail: "test_verify_dsse_bundle_with_trust_root"