Open getvictor opened 3 months ago
@lukeheath I think this story meets the definition of an engineering-initiated user story.
Adding ~engineering-initiated
and removing ~feature-fest
.
@getvictor Thanks for filing this. I'm prioritizing on to the drafting board for estimation and consideration in the next sprint.
Hopefully, go-releaser has a post-hook that can call the agitation that does the signing. Other options could also be good.
Goal
Context
We are signing orbit.exe and fleet-desktop.exe. fleetctl for macOS is now signed as well.
fleetctl is generated using GoReleaser flow. Windows signing uses an HSM hosted by DigiCert (KeyLocker), so the signing flow is more complex than for macOS. Engineering needs to figure out how to use the existing Windows signing workflow with GoReleaser, or create a new flow, or some combination of the two.
Changes
Product
Engineering
QA
Risk assessment
Manual testing steps
Testing notes
Confirmation