Skip to content

gh-100538: Create a workflow for verifying bundled libexpat files #100539

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 4 commits into
base: main
Choose a base branch
from
Open

gh-100538: Create a workflow for verifying bundled libexpat files #100539

wants to merge 4 commits into from

Conversation

@illia-v
Copy link
Contributor

@illia-v illia-v commented Dec 26, 2022
edited by bedevere-bot
Loading

Tags of libexpat releases are signed and GitHub runs a verification process on them.

I added a check of the verification status retrieved via GitHub's API. If the check succeeds, the script downloads a release source code and compares content of bundled files to the source.

Since a few lines are added to Modules/expat/expat_external.h, I moved them to the top of the file and the script skips them.

@bedevere-bot bedevere-bot mentioned this pull request Dec 26, 2022
Open
@sobolevn
Copy link
Member

You don't need news for build tools :)

@illia-v
Copy link
Contributor Author

illia-v commented Feb 3, 2023

@sobolevn I removed the news entry

@hartwork hartwork mentioned this pull request Feb 14, 2024
Merged
picnixz
picnixz reviewed Oct 4, 2025
View reviewed changes
Modules/expat/expat_external.h
@@ -1,3 +1,7 @@
/* Namespace external symbols to allow multiple libexpat version to
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This one is should not be needed. It's already included below.

@picnixz
Copy link
Member

picnixz commented Oct 4, 2025

More generally, I'm not sure we actually need this step. Aren't we already doing this with SBOM checks?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@picnixz picnixz picnixz left review comments

@ezio-melotti ezio-melotti Awaiting requested review from ezio-melotti ezio-melotti is a code owner

@hugovk hugovk Awaiting requested review from hugovk hugovk is a code owner

@AA-Turner AA-Turner Awaiting requested review from AA-Turner AA-Turner is a code owner

@sethmlarson sethmlarson Awaiting requested review from sethmlarson

Assignees

No one assigned

Labels

awaiting review skip news

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@illia-v @sobolevn @picnixz @bedevere-bot @StanFromIreland