import-codesign-certs

import-codesign-certs copied to clipboard

Bumps [@actions/core](https://github.com/actions/toolkit/tree/HEAD/packages/core) from 1.2.0 to 1.9.1. Changelog Sourced from @​actions/core's changelog. 1.9.1 Randomize delimiter when calling core.exportVariable 1.9.0 Added toPosixPath, toWin32Path and toPlatformPath utilities #1102 1.8.2 Update to v2.0.1 of...

dependabot[bot]

At https://github.com/step-security/secure-workflows we are building a knowledge-base (KB) of GITHUB_TOKEN permissions needed by different GitHub Actions. When developers try to set minimum token permissions for their workflows, they can use...

step-security-bot

Error when import certificate

3

Hi, I have an error when import certificate: ``` Run apple-actions/import-codesign-certs@v1 with: keychain: prprojector-macos create-keychain: false p12-file-base64: *** p12-password: *** env: pythonLocation: /Users/runner/hostedtoolcache/Python/3.7.9/x64 /usr/bin/security unlock-keychain -p *** prprojector-macos.keychain /usr/bin/security import...

paulocoutinhox

Add documentation

1

I've added some documentation that describes how to generate and prepare the certificates for adding to the GitHub Actions Secrets. I you have any suggestions let me know.

benbowler

Bumps [ajv](https://github.com/ajv-validator/ajv) from 6.10.2 to 6.12.6. Release notes Sourced from ajv's releases. v6.12.6 Fix performance issue of "url" format. v6.12.5 Fix uri scheme validation (@​ChALkeR). Fix boolean schemas with strictKeywords...

dependabot[bot]

A keychain with the same name already exists. On second run

8

I finally got this working (turns out my organisation secret doesn't propogate to my private repository) On the second run, I get this error `security: SecKeychainCreate signing_temp.keychain: A keychain with...

SoylentGraham

Bumps [tmpl](https://github.com/daaku/nodejs-tmpl) from 1.0.4 to 1.0.5. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...

dependabot[bot]

Bumps [path-parse](https://github.com/jbgutierrez/path-parse) from 1.0.6 to 1.0.7. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...

dependabot[bot]

Bumps [hosted-git-info](https://github.com/npm/hosted-git-info) from 2.8.5 to 2.8.9. Changelog Sourced from hosted-git-info's changelog. 2.8.9 (2021-04-07) Bug Fixes backport regex fix from #76 (29adfe5), closes #84 2.8.8 (2020-02-29) Bug Fixes #61 & #65...

dependabot[bot]

Bumps [lodash](https://github.com/lodash/lodash) from 4.17.19 to 4.17.21. Commits f299b52 Bump to v4.17.21 c4847eb Improve performance of toNumber, trim and trimEnd on large input strings 3469357 Prevent command injection through _.template's variable...

dependabot[bot]