almet/dangerzone
1
0
Fork 0
mirror of https://github.com/freedomofpress/dangerzone.git synced 2025-05-04 12:41:50 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 7

fixup! Download and verify cosign signatures

Browse source
This commit is contained in:
Alexis Métaireau 2025-02-25 15:44:24 +01:00
parent 4073a62fd4
commit 30ec1f10e9
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
dangerzone/updater/signatures.py
View file

@ -377,7 +377,7 @@ def store_signatures(signatures: list[Dict], image_digest: str, pubkey: str) ->
if f"sha256:{image_digest}" != digests[0]: if f"sha256:{image_digest}" != digests[0]:
raise errors.SignatureMismatch( raise errors.SignatureMismatch(
f"Signatures do not match the given image digest ({image_digest}, {digests[0]})" f"Signatures do not match the given image digest (sha256:{image_digest}, {digests[0]})"
) )
pubkey_signatures = SIGNATURES_PATH / get_file_digest(pubkey) pubkey_signatures = SIGNATURES_PATH / get_file_digest(pubkey)