| 1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859 |
- #!/usr/bin/env node
- /* eslint-disable @typescript-eslint/prefer-nullish-coalescing */
- import { build as builder } from 'electron-builder'
- import * as vars from './vars.mjs'
- import { execSync } from 'child_process'
- const isTag = (process.env.GITHUB_REF || process.env.BUILD_SOURCEBRANCH || '').startsWith('refs/tags/')
- const keypair = process.env.SM_KEYPAIR_ALIAS
- process.env.ARCH = process.env.ARCH || process.arch
- console.log('Signing enabled:', !!keypair)
- builder({
- dir: true,
- win: ['nsis', 'zip'],
- arm64: process.env.ARCH === 'arm64',
- config: {
- extraMetadata: {
- version: vars.version,
- },
- publish: process.env.KEYGEN_TOKEN ? [
- vars.keygenConfig,
- {
- provider: 'github',
- channel: `latest-${process.env.ARCH}`,
- },
- ] : undefined,
- forceCodeSigning: !!keypair,
- win: {
- certificateSha1: process.env.SM_CODE_SIGNING_CERT_SHA1_HASH,
- publisherName: process.env.SM_PUBLISHER_NAME,
- signingHashAlgorithms: ['sha256'],
- sign: keypair ? async function (configuration) {
- console.log('Signing', configuration)
- if (configuration.path) {
- try {
- const out = execSync(
- `smctl sign --keypair-alias=${keypair} --input "${String(configuration.path)}"`
- )
- if (out.toString().includes('FAILED')) {
- throw new Error(out.toString())
- }
- console.log(out)
- } catch (e) {
- console.error(`Failed to sign ${configuration.path}`)
- console.error(e)
- process.exit(1)
- }
- }
- } : undefined,
- },
- },
- publish: process.env.KEYGEN_TOKEN ? isTag ? 'always' : 'onTagOrDraft' : 'never',
- }).catch(e => {
- console.error(e)
- process.exit(1)
- })
|
