diff options
Diffstat (limited to 'community/cosign/APKBUILD')
-rw-r--r-- | community/cosign/APKBUILD | 62 |
1 files changed, 62 insertions, 0 deletions
diff --git a/community/cosign/APKBUILD b/community/cosign/APKBUILD new file mode 100644 index 00000000000..672bbff8050 --- /dev/null +++ b/community/cosign/APKBUILD @@ -0,0 +1,62 @@ +# Maintainer: Ariadne Conill <ariadne@dereferenced.org> +pkgname=cosign +pkgver=2.2.1 +pkgrel=2 +pkgdesc="container signing tool with support for ephemeral keys and Sigstore signing" +url="https://github.com/sigstore/cosign" +arch="all" +license="Apache-2.0" +# pcsc-lite-libs needed at runtime for smartcard support +depends="pcsc-lite-libs" +makedepends="go pcsc-lite-dev" +# NOTE: We can't use the default bashcomp, etc splitters because they take everything, +# the default splitters should be improved somehow. +subpackages=" + $pkgname-bash-completion + $pkgname-fish-completion + $pkgname-zsh-completion + " +source="https://github.com/sigstore/cosign/archive/v$pkgver/cosign-$pkgver.tar.gz" +options="chmod-clean !check" + +# secfixes: +# 2.2.1-r0: +# - CVE-2023-46737 +# 1.12.1-r0: +# - CVE-2022-36056 +# 1.10.1-r0: +# - CVE-2022-35929 +# 1.5.2-r0: +# - CVE-2022-23649 + +export GOCACHE="${GOCACHE:-"$srcdir/go-cache"}" +export GOTMPDIR="${GOTMPDIR:-"$srcdir"}" +export GOMODCACHE="${GOMODCACHE:-"$srcdir/go"}" + +build() { + mkdir build + go build -o build/ \ + -tags -tags=pivkey,pkcs11key \ + -ldflags=-X=sigs.k8s.io/release-utils/version.gitVersion="v$pkgver" \ + "$builddir"/cmd/... + + for i in bash fish zsh; do + "$builddir"/build/cosign completion $i > "$builddir"/cosign.$i + done +} + +check() { + make test +} + +package() { + install -Dm755 "$builddir"/build/cosign "$pkgdir"/usr/bin/cosign + + install -Dm644 "$builddir"/cosign.bash "$pkgdir"/usr/share/bash-completion/completions/cosign + install -Dm644 "$builddir"/cosign.fish "$pkgdir"/usr/share/fish/vendor_completions.d/cosign.fish + install -Dm644 "$builddir"/cosign.zsh "$pkgdir"/usr/share/zsh/site-functions/_cosign +} + +sha512sums=" +84f2308bbb1968eaf6d0d95e2dcb8efa2c42cd2599298b37d576e5e87f0cf6c1153c330b034908c0c7557953e0a7d964eaa4a8768f7dc35900f5f427d8fe7713 cosign-2.2.1.tar.gz +" |