Fixing ci signing for windows#1330
Conversation
…rt to debug issues
|
Caution Review failedThe pull request is closed. WalkthroughModified CI release workflow to enhance Windows signing process with robust path validation, keystore password parameters, and PFX certificate inspection. Added early existence checks for espressif-ide.exe and signtool.exe, implemented dynamic tool discovery with filtering and sorting, and introduced post-PFX creation verification using certutil. Changes
Sequence Diagram(s)sequenceDiagram
participant Workflow
participant FileSystem
participant Signtool
participant Certutil
Workflow->>FileSystem: Validate espressif-ide.exe exists
alt NOT found
Workflow->>Workflow: throw error
end
Workflow->>FileSystem: Search for signtool.exe
FileSystem-->>Workflow: Get-ChildItem with filter & sort
alt signtool NOT found
Workflow->>Workflow: throw error
end
alt cert.pfx NOT found
Workflow->>Workflow: throw error
end
rect rgb(200, 230, 255)
note right of Workflow: New verification step
Workflow->>Certutil: Inspect PFX with certutil
Certutil-->>Workflow: Certificate data dump
end
Workflow->>Signtool: Sign executable with full path
Signtool-->>Workflow: Signed executable
Workflow->>Signtool: Verify signature with discovered path
Signtool-->>Workflow: Verification result
Estimated code review effort🎯 3 (Moderate) | ⏱️ ~20 minutes Workflow file contains multiple interdependent changes across validation logic, path discovery, and signing operations. Requires careful verification of error handling paths, tool discovery correctness, and proper integration with the critical signing workflow. Possibly related PRs
Suggested reviewers
Poem
✨ Finishing touches🧪 Generate unit tests (beta)
📜 Recent review detailsConfiguration used: CodeRabbit UI Review profile: CHILL Plan: Pro 📒 Files selected for processing (1)
Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out. Comment |
Fixing ci signing for windows
Summary by CodeRabbit