From 038c2645568bcf4f01c48fcce9e6a6ba569bd3b3 Mon Sep 17 00:00:00 2001 From: Jussi Kukkonen Date: Mon, 13 Jan 2025 15:24:04 +0200 Subject: [PATCH] self-test: Install sigstore in separate virtualenv This prevents sigstore dependencies from being accidentally used by the test suite. Signed-off-by: Jussi Kukkonen --- .github/workflows/conformance.yml | 13 +++++++++++-- 1 file changed, 11 insertions(+), 2 deletions(-) diff --git a/.github/workflows/conformance.yml b/.github/workflows/conformance.yml index 25e5d69..b0fb96c 100644 --- a/.github/workflows/conformance.yml +++ b/.github/workflows/conformance.yml @@ -28,12 +28,21 @@ jobs: cache: "pip" - name: install sigstore-python - run: pip install "sigstore >= 3.5.0, < 4.0" + run: | + python3 -m venv sigstore-env + ./sigstore-env/bin/python -m pip install "sigstore >= 3.5.0, < 4.0" + + cat < ./sigstore-env/bin/conformance + #!/bin/sh + $PWD/sigstore-env/bin/python $PWD/sigstore-python-conformance "$@" + EOF + + chmod +x ./sigstore-env/bin/conformance - name: conformance test sigstore-python uses: ./ with: - entrypoint: ${{ github.workspace }}/sigstore-python-conformance + entrypoint: ./sigstore-env/bin/conformance skip-cpython-release-tests: ${{ matrix.skip-cpython-release-tests }} environment: ${{ matrix.sigstore-env }} xfail: "test_verify_with_trust_root test_verify_dsse_bundle_with_trust_root"