adaptor sigs are deniable! with a valid bip340sig, anybody can adapt … #199
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # This file was automatically generated by sbt-github-actions using the | |
| # githubWorkflowGenerate task. You should add and commit this file to | |
| # your git repository. It goes without saying that you shouldn't edit | |
| # this file by hand! Instead, if you wish to make changes, you should | |
| # change your sbt build configuration to revise the workflow description | |
| # to meet your needs, then regenerate this file. | |
| name: Continuous Integration | |
| on: | |
| pull_request: | |
| branches: ['**', '!update/**', '!pr/**'] | |
| push: | |
| branches: ['**', '!update/**', '!pr/**'] | |
| tags: [v*] | |
| env: | |
| PGP_PASSPHRASE: ${{ secrets.PGP_PASSPHRASE }} | |
| SONATYPE_PASSWORD: ${{ secrets.SONATYPE_PASSWORD }} | |
| SONATYPE_CREDENTIAL_HOST: ${{ secrets.SONATYPE_CREDENTIAL_HOST }} | |
| SONATYPE_USERNAME: ${{ secrets.SONATYPE_USERNAME }} | |
| PGP_SECRET: ${{ secrets.PGP_SECRET }} | |
| GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| jobs: | |
| build: | |
| name: Build and Test | |
| strategy: | |
| matrix: | |
| os: [ubuntu-latest] | |
| scala: [3.2.2] | |
| java: [temurin@8] | |
| project: [rootJS, rootJVM, rootNative] | |
| runs-on: ${{ matrix.os }} | |
| steps: | |
| - name: Checkout current branch (full) | |
| uses: actions/checkout@v2 | |
| with: | |
| fetch-depth: 0 | |
| - name: Download Java (temurin@8) | |
| id: download-java-temurin-8 | |
| if: matrix.java == 'temurin@8' | |
| uses: typelevel/download-java@v1 | |
| with: | |
| distribution: temurin | |
| java-version: 8 | |
| - name: Setup Java (temurin@8) | |
| if: matrix.java == 'temurin@8' | |
| uses: actions/setup-java@v2 | |
| with: | |
| distribution: jdkfile | |
| java-version: 8 | |
| jdkFile: ${{ steps.download-java-temurin-8.outputs.jdkFile }} | |
| - name: Cache sbt | |
| uses: actions/cache@v2 | |
| with: | |
| path: | | |
| ~/.sbt | |
| ~/.ivy2/cache | |
| ~/.coursier/cache/v1 | |
| ~/.cache/coursier/v1 | |
| ~/AppData/Local/Coursier/Cache/v1 | |
| ~/Library/Caches/Coursier/v1 | |
| key: ${{ runner.os }}-sbt-cache-v2-${{ hashFiles('**/*.sbt') }}-${{ hashFiles('project/build.properties') }} | |
| - name: Install libsecp256k1 | |
| if: matrix.project == 'rootNative' | |
| run: 'git clone https://github.com/bitcoin-core/secp256k1 && cd secp256k1 && ./autogen.sh && ./configure --enable-module-schnorrsig --enable-module-recovery && make && sudo make install && sudo ln -s /usr/local/lib/libsecp256k1* /usr/lib' | |
| - name: Install Node Modules | |
| if: matrix.project == 'rootJS' | |
| run: npm install @noble/secp256k1 @noble/hashes @stablelib/chacha @stablelib/chacha20poly1305 | |
| - name: Check that workflows are up to date | |
| run: sbt 'project ${{ matrix.project }}' '++${{ matrix.scala }}' 'project /' githubWorkflowCheck | |
| - name: scalaJSLink | |
| if: matrix.project == 'rootJS' | |
| run: sbt 'project ${{ matrix.project }}' '++${{ matrix.scala }}' Test/scalaJSLinkerResult | |
| - name: nativeLink | |
| if: matrix.project == 'rootNative' | |
| run: sbt 'project ${{ matrix.project }}' '++${{ matrix.scala }}' Test/nativeLink | |
| - name: Test | |
| run: sbt 'project ${{ matrix.project }}' '++${{ matrix.scala }}' test | |
| - name: Check binary compatibility | |
| if: matrix.java == 'temurin@8' | |
| run: sbt 'project ${{ matrix.project }}' '++${{ matrix.scala }}' mimaReportBinaryIssues | |
| - name: Generate API documentation | |
| if: matrix.java == 'temurin@8' | |
| run: sbt 'project ${{ matrix.project }}' '++${{ matrix.scala }}' doc | |
| - name: Make target directories | |
| if: github.event_name != 'pull_request' && (startsWith(github.ref, 'refs/tags/v')) | |
| run: mkdir -p target jvm/target js/target .js/target native/target .jvm/target .native/target project/target | |
| - name: Compress target directories | |
| if: github.event_name != 'pull_request' && (startsWith(github.ref, 'refs/tags/v')) | |
| run: tar cf targets.tar target jvm/target js/target .js/target native/target .jvm/target .native/target project/target | |
| - name: Upload target directories | |
| if: github.event_name != 'pull_request' && (startsWith(github.ref, 'refs/tags/v')) | |
| uses: actions/upload-artifact@v2 | |
| with: | |
| name: target-${{ matrix.os }}-${{ matrix.java }}-${{ matrix.scala }}-${{ matrix.project }} | |
| path: targets.tar | |
| publish: | |
| name: Publish Artifacts | |
| needs: [build] | |
| if: github.event_name != 'pull_request' && (startsWith(github.ref, 'refs/tags/v')) | |
| strategy: | |
| matrix: | |
| os: [ubuntu-latest] | |
| scala: [3.2.2] | |
| java: [temurin@8] | |
| runs-on: ${{ matrix.os }} | |
| steps: | |
| - name: Checkout current branch (full) | |
| uses: actions/checkout@v2 | |
| with: | |
| fetch-depth: 0 | |
| - name: Download Java (temurin@8) | |
| id: download-java-temurin-8 | |
| if: matrix.java == 'temurin@8' | |
| uses: typelevel/download-java@v1 | |
| with: | |
| distribution: temurin | |
| java-version: 8 | |
| - name: Setup Java (temurin@8) | |
| if: matrix.java == 'temurin@8' | |
| uses: actions/setup-java@v2 | |
| with: | |
| distribution: jdkfile | |
| java-version: 8 | |
| jdkFile: ${{ steps.download-java-temurin-8.outputs.jdkFile }} | |
| - name: Cache sbt | |
| uses: actions/cache@v2 | |
| with: | |
| path: | | |
| ~/.sbt | |
| ~/.ivy2/cache | |
| ~/.coursier/cache/v1 | |
| ~/.cache/coursier/v1 | |
| ~/AppData/Local/Coursier/Cache/v1 | |
| ~/Library/Caches/Coursier/v1 | |
| key: ${{ runner.os }}-sbt-cache-v2-${{ hashFiles('**/*.sbt') }}-${{ hashFiles('project/build.properties') }} | |
| - name: Download target directories (3.2.2, rootJS) | |
| uses: actions/download-artifact@v2 | |
| with: | |
| name: target-${{ matrix.os }}-${{ matrix.java }}-3.2.2-rootJS | |
| - name: Inflate target directories (3.2.2, rootJS) | |
| run: | | |
| tar xf targets.tar | |
| rm targets.tar | |
| - name: Download target directories (3.2.2, rootJVM) | |
| uses: actions/download-artifact@v2 | |
| with: | |
| name: target-${{ matrix.os }}-${{ matrix.java }}-3.2.2-rootJVM | |
| - name: Inflate target directories (3.2.2, rootJVM) | |
| run: | | |
| tar xf targets.tar | |
| rm targets.tar | |
| - name: Download target directories (3.2.2, rootNative) | |
| uses: actions/download-artifact@v2 | |
| with: | |
| name: target-${{ matrix.os }}-${{ matrix.java }}-3.2.2-rootNative | |
| - name: Inflate target directories (3.2.2, rootNative) | |
| run: | | |
| tar xf targets.tar | |
| rm targets.tar | |
| - name: Import signing key | |
| if: env.PGP_SECRET != '' && env.PGP_PASSPHRASE == '' | |
| run: echo $PGP_SECRET | base64 -di | gpg --import | |
| - name: Import signing key and strip passphrase | |
| if: env.PGP_SECRET != '' && env.PGP_PASSPHRASE != '' | |
| run: | | |
| echo "$PGP_SECRET" | base64 -di > /tmp/signing-key.gpg | |
| echo "$PGP_PASSPHRASE" | gpg --pinentry-mode loopback --passphrase-fd 0 --import /tmp/signing-key.gpg | |
| (echo "$PGP_PASSPHRASE"; echo; echo) | gpg --command-fd 0 --pinentry-mode loopback --change-passphrase $(gpg --list-secret-keys --with-colons 2> /dev/null | grep '^sec:' | cut --delimiter ':' --fields 5 | tail -n 1) | |
| - name: Publish | |
| run: sbt '++${{ matrix.scala }}' tlRelease |