Use the full path instead.

Author: dlemstra

.github/workflows/main.yml

@@ -31,7 +31,7 @@ jobs:
       - name: Sign files
         uses: ./actions/code-signing
         with:
-          client-id: ${{secrets.AZURE_CLIENT_ID}}
-          tenant-id: ${{secrets.AZURE_TENANT_ID}}
-          subscription-id: ${{secrets.AZURE_SUBSCRIPTION_ID}}
-          directory: files-to-sign
+          client-id: ${{ secrets.AZURE_CLIENT_ID }}
+          tenant-id: ${{ secrets.AZURE_TENANT_ID }}
+          subscription-id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
+          directory: ${{ github.workspace }}\files-to-sign

actions/code-signing/action.yml

@@ -29,9 +29,9 @@ runs:
       if: steps.should_sign.outputs.should_sign == 'true'
       uses: azure/login@a457da9ea143d694b1b9c7c869ebb04ebe844ef5 # v2.3.0
       with:
-        client-id: ${{inputs.client-id}}
-        tenant-id: ${{inputs.tenant-id}}
-        subscription-id: ${{inputs.subscription-id}}
+        client-id: ${{ inputs.client-id }}
+        tenant-id: ${{ inputs.tenant-id }}
+        subscription-id: ${{ inputs.subscription-id }}
 
     - name: Install sign cli
       if: steps.should_sign.outputs.should_sign == 'true'
@@ -44,7 +44,7 @@ runs:
       shell: pwsh
       run: |
         dotnet tool run sign code trusted-signing `
-          -base-directory ${{inputs.directory}} `
+          --base-directory ${{ inputs.directory }} `
           --trusted-signing-account ImageMagick `
           --trusted-signing-certificate-profile ImageMagick `
           --trusted-signing-endpoint https://eus.codesigning.azure.net `