GitGuardian
diff --git a/‎.github/workflows/build_release_assets.yml
Lines changed: 1 addition & 1 deletion b/‎.github/workflows/build_release_assets.yml
Lines changed: 1 addition & 1 deletion
diff --git a/‎.github/workflows/tag.yml
Lines changed: 9 additions & 5 deletions b/‎.github/workflows/tag.yml
Lines changed: 9 additions & 5 deletions
diff --git a/‎changelog.d/20250506_155224_severine.bonnechere_fix_choco_publication.md
Lines changed: 3 additions & 0 deletions b/‎changelog.d/20250506_155224_severine.bonnechere_fix_choco_publication.md
Lines changed: 3 additions & 0 deletions
diff --git a/‎scripts/build-os-packages/build-os-packages
Lines changed: 3 additions & 5 deletions b/‎scripts/build-os-packages/build-os-packages
Lines changed: 3 additions & 5 deletions
diff --git a/‎scripts/build-os-packages/windows-functions.bash
Lines changed: 40 additions & 0 deletions b/‎scripts/build-os-packages/windows-functions.bash
Lines changed: 40 additions & 0 deletions
diff --git a/‎scripts/push-to-chocolatey/README.md renamed to ‎scripts/chocolatey/README.md
Lines changed: 1 addition & 1 deletion b/‎scripts/push-to-chocolatey/README.md renamed to ‎scripts/chocolatey/README.md
Lines changed: 1 addition & 1 deletion
diff --git a/‎scripts/push-to-chocolatey/VERIFICATION.txt renamed to ‎scripts/chocolatey/VERIFICATION.txt b/‎scripts/push-to-chocolatey/VERIFICATION.txt renamed to ‎scripts/chocolatey/VERIFICATION.txt
diff --git a/‎scripts/push-to-chocolatey/ggshield.nuspec renamed to ‎scripts/chocolatey/ggshield.nuspec b/‎scripts/push-to-chocolatey/ggshield.nuspec renamed to ‎scripts/chocolatey/ggshield.nuspec
diff --git a/‎scripts/push-to-chocolatey/icon.png renamed to ‎scripts/chocolatey/icon.png b/‎scripts/push-to-chocolatey/icon.png renamed to ‎scripts/chocolatey/icon.png
diff --git a/‎scripts/chocolatey/push
Lines changed: 17 additions & 0 deletions b/‎scripts/chocolatey/push
Lines changed: 17 additions & 0 deletions
@@ -261,7 +261,6 @@ jobs:
           TEST_GG_VALID_TOKEN: ${{ secrets.TEST_GG_VALID_TOKEN }}
           TEST_GG_VALID_TOKEN_IGNORE_SHA: ${{ secrets.TEST_GG_VALID_TOKEN_IGNORE_SHA }}
           TEST_UNKNOWN_SECRET: ${{ secrets.TEST_UNKNOWN_SECRET }}
-
       - name: Upload artifacts
         uses: actions/upload-artifact@v4
         with:
@@ -272,6 +271,7 @@ jobs:
             packages/ggshield-*.zip
             packages/ggshield-*.rpm
             packages/ggshield_*.deb
+            packages/ggshield.*.nupkg
 
   # Run some basic tests, the goal is to verify the ggshield binary has all the
   # libraries it needs to run
 
@@ -82,6 +82,7 @@ jobs:
             packages/ggshield_*.deb \
             packages/ggshield-*.rpm \
             packages/ggshield-*.zip \
+            packages/ggshield.*.nupkg \
             packages/ggshield-*.gz
 
   update_vscode_extension:
@@ -151,19 +152,22 @@ jobs:
   push_to_chocolatey:
     needs: build_release_assets
     name: Push to Chocolatey
-    runs-on: chocolatey/choco
+    runs-on: windows-latest
     if: github.event_name == 'push' && startsWith(github.event.ref, 'refs/tags')
     steps:
       - name: Checkout
         uses: actions/checkout@v4
 
-      - name: Download packages
+      - name: Download nupkg
+        id: download-nupkg
         uses: actions/download-artifact@v4
         with:
-          pattern: os-packages-windows-2022
+          pattern: ggshield.*.nupkg
           path: packages
-          merge-multiple: true
 
       - name: Push to Chocolatey
+        shell: bash
         run: |
-          scripts/push-to-chocolatey/push-to-chocolatey
+          scripts/chocolatey/push packages/ggshield.*.nupkg
+        env:
+          CHOCOLATEY_API_KEY: ${{ secrets.CHOCOLATEY_API_KEY }}
@@ -0,0 +1,3 @@
+### Added
+
+- Added ggshield nukpg package (for installation with Chocolatey on Windows) to release assets.
@@ -114,6 +114,7 @@ init_system_vars() {
         EXE_EXT=".exe"
         HUMAN_OS=Windows
         TARGET="$arch-pc-windows-msvc"
+        REQUIREMENTS="$REQUIREMENTS choco"
         ;;
     *)
         die "Unknown OS. uname printed '$out'"
@@ -320,11 +321,8 @@ step_create_archive() {
         info "Archive created in $pkg_path & $archive_path"
         ;;
     Windows)
-        archive_path="$PACKAGES_DIR/$ARCHIVE_DIR_NAME.zip"
-        pushd "$PACKAGES_DIR"
-        7z a "$archive_path" "$ARCHIVE_DIR_NAME"
-        popd
-        info "Archive created in $archive_path"
+        create_windows_packages
+        test_chocolatey_package
         ;;
     esac
 }
 
@@ -26,3 +26,43 @@ windows_sign() {
         --input "$archive_dir/$INSTALL_PREFIX/ggshield.exe"
 }
 
+windows_create_archive() {
+    local archive_path="$PACKAGES_DIR/$ARCHIVE_DIR_NAME.zip"
+    pushd "$PACKAGES_DIR"
+    7z a "$archive_path" "$ARCHIVE_DIR_NAME"
+    popd
+    info "Archive created in $archive_path"
+}
+
+windows_build_chocolatey_package() {
+    # choco-package will contain everything needed to build the nupkg
+    # we delete it a the end.
+    mkdir choco-package
+    mkdir choco-package/tools
+
+    cp -r "$PACKAGES_DIR/$ARCHIVE_DIR_NAME/_internal" choco-package/tools
+    cp "$PACKAGES_DIR/$ARCHIVE_DIR_NAME/ggshield.exe" choco-package/tools
+    cp "$ROOT_DIR/scripts/chocolatey/ggshield.nuspec" choco-package
+    cp "$ROOT_DIR/scripts/chocolatey/VERIFICATION.txt" choco-package/tools
+    cp "$ROOT_DIR/LICENSE" choco-package/tools/LICENSE.txt
+    sed -i "s/__VERSION__/$VERSION/" choco-package/ggshield.nuspec
+
+    choco pack choco-package/* --version $VERSION --outdir $PACKAGES_DIR
+
+    info "Chocolatey package created in $PACKAGES_DIR/ggshield.$VERSION.nupkg"
+
+    rm -rf choco-package
+    
+}
+
+# cf https://docs.chocolatey.org/en-us/create/create-packages/#testing-your-package
+test_chocolatey_package() {
+    pushd "$PACKAGES_DIR"
+    choco install ggshield --debug --verbose --source . --noop
+    popd
+}
+
+create_windows_packages() {
+    windows_create_archive
+    windows_build_chocolatey_package
+}
@@ -1,4 +1,4 @@
-# Push to Chocolatey
+# Chocolatey
 
 This folder contains everything necessary to build and publish the chocolatey package.
 
 
@@ -0,0 +1,17 @@
+#!/usr/bin/env bash
+set -euo pipefail
+
+die() {
+    echo $* >&2
+    exit 1
+}
+
+if [ -z "${CHOCOLATEY_API_KEY:-}" ] ; then
+    die '$CHOCOLATEY_API_KEY is not set'
+fi
+
+# parse command line arguments
+choco_nupkg=$1
+
+# push to chocolatey
+choco push $choco_nupkg --source https://push.chocolatey.org/ --api-key $CHOCOLATEY_API_KEY
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+### Added`
	`2`	`+`
	`3`	`+- Added ggshield nukpg package (for installation with Chocolatey on Windows) to release assets.`
Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-# Push to Chocolatey`
	`1`	`+# Chocolatey`
`2`	`2`
`3`	`3`	`This folder contains everything necessary to build and publish the chocolatey package.`
`4`	`4`