Add signing of the exe to publish workflow (#11)

Keeper-Security · Jul 1, 2024 · 9cbb887 · 9cbb887
1 parent b054333
commit 9cbb887
Showing 1 changed file with 11 additions and 1 deletion.
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -1,4 +1,4 @@
-name: release
+name: Release
 
 on:
   push:
@@ -44,6 +44,16 @@ jobs:
           --output ..\publish `
           /p:AssemblyName=${{ env.ASSEMBLY_NAME }}
 
+      - uses: dlemstra/code-sign-action@v1
+        with:
+          certificate: '${{ secrets.CERTIFICATE }}'
+          password: '${{ secrets.CERTIFICATE_PASSWORD }}'
+          folder: publish
+          recursive: true
+          files: |
+            ${{ env.ASSEMBLY_NAME }}.exe
+          description: "Keeper's Windows Credential Manager Utility"
+
       - name: Create checksum
         run: |
           $FileHash = (Get-FileHash publish\${{ env.ASSEMBLY_NAME }}.exe -Algorithm SHA256).Hash