Skip to content

Commit 43d2d79

Browse files
MaxMB15MaxMB15
committed
fix: decode base64 signing key before tauri build
1 parent b888acc commit 43d2d79

1 file changed

Lines changed: 15 additions & 0 deletions

File tree

.github/workflows/release.yml

Lines changed: 15 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -49,6 +49,21 @@ jobs:
4949
- name: Build libmpv
5050
run: ./scripts/build-libmpv.sh macos
5151

52+
- name: Prepare signing key
53+
run: |
54+
# Tauri CLI expects the raw minisign format, not base64-encoded.
55+
# Decode if needed so both secret formats work.
56+
if echo "$TAURI_SIGNING_PRIVATE_KEY" | base64 -d 2>/dev/null | grep -q "untrusted comment:"; then
57+
{
58+
echo "TAURI_SIGNING_PRIVATE_KEY<<__ENDKEY__"
59+
echo "$TAURI_SIGNING_PRIVATE_KEY" | base64 -d
60+
echo "__ENDKEY__"
61+
} >> "$GITHUB_ENV"
62+
echo "Key was base64-encoded — decoded for build."
63+
else
64+
echo "Key is already in raw format."
65+
fi
66+
5267
- name: Build and publish release
5368
uses: tauri-apps/tauri-action@v0
5469
env:

0 commit comments

Comments
 (0)