How to get the secure signed artifacts from Azure devops pipeline agent

Question

I want to develop a azure pipeline for secure signing the binary artifact.

Here is the process:

Put the signing tools and binaries in a GitHub repository.
User upload the binaries to GitHub repository folder "unsigned" and run the pipeline, pipeline pull the tools and binaries to a pipeline agent(Winserver) and sign the binaries, the signed binaries will be copied to repository folder "signed".
Directly download the signed binaries from pipeline agent, or upload signed binaries back to GitHub repository where users can download from.

For step 3: How to directly download the signed binaries from pipeline agent to a local PC? What git commands is needed for uploading signed binaries back to GitHub repository? Thanks.

just git commit & push to the git repo, then clone the repo to your local PC — Shayki Abramczyk, Aug 24 '20 at 09:56
@Ming Not get your latest information, is the workaround helpful for you? Or if you have any concern, feel free to share it here. — Hugh Lin, Aug 28 '20 at 09:30

Hugh Lin · Answer 1 · 2020-08-26T01:39:28.873

1

Agree with Shayki, you can try the following git command in a cmd task.

git clone https://github.com/xxx/xxx.git
git config --global user.name "xxx"
git checkout master
git add .
git commit -m "abc"
git push https://{yourPAT}@github.com/xxx/yyy.git

Here is a ticket you can refer to.

edited Aug 26 '20 at 01:39

answered Aug 25 '20 at 06:41

Hugh Lin

17,829
2
21
25

How to get the secure signed artifacts from Azure devops pipeline agent

1 Answers1