actions/runner-images
1
0
Fork 0
mirror of https://github.com/actions/runner-images.git synced 2025-12-16 06:40:32 +00:00
Code Issues Packages Projects Releases Wiki Activity

[Windows] Add checksum verification for Aliyun CLI (#8512)

Browse Source
This commit is contained in:
Erik Bershel
2023-10-16 09:45:23 +02:00
committed by GitHub
parent b3b303d294
commit 486298a566
1 changed files with 15 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

19
images/win/scripts/Installers/Install-AliyunCli.ps1
View File

@@ -1,18 +1,29 @@
################################################################################ ################################################################################
## File: Install-AliyunCli.ps1 ## File: Install-AliyunCli.ps1
## Desc: Install Alibaba Cloud CLI ## Desc: Install Alibaba Cloud CLI
## Supply chain security: Alibaba Cloud CLI - checksum validation
################################################################################ ################################################################################
Write-Host "Download Latest aliyun-cli archive" Write-Host "Download Latest aliyun-cli archive"
$ZipballUrl = 'https://aliyuncli.alicdn.com/aliyun-cli-windows-latest-amd64.zip' $repoUrl = "https://api.github.com/repos/aliyun/aliyun-cli/releases/latest"
$aliyunArchivePath = Start-DownloadWithRetry -Url $ZipballUrl -Name "aliyun-cli.zip" $installerFileName = "aliyun-cli-windows"
$assets = (Invoke-RestMethod -Uri $repoUrl).assets
$downloadUrl = ($assets.browser_download_url -ilike "*aliyun-cli-windows-*-amd64.zip*") | Select-Object -First 1
$packagePath = Start-DownloadWithRetry -Url $downloadUrl -Name "$installerFileName.zip"
#region Supply chain security - Alibaba Cloud CLI
$fileHash = (Get-FileHash -Path $packagePath -Algorithm SHA256).Hash
$hashUrl = ($assets.browser_download_url -ilike "*SHASUMS256.txt*") | Select-Object -First 1
$externalHash = (Invoke-RestMethod -Uri $hashURL).ToString().Split("`n").Where({ $_ -ilike "*$installerFileName*" }).Split(' ')[0]
Use-ChecksumComparison $fileHash $externalHash
#endregion
Write-Host "Expand aliyun-cli archive" Write-Host "Expand aliyun-cli archive"
$aliyunPath = "C:\aliyun-cli" $aliyunPath = "C:\aliyun-cli"
New-Item -Path $aliyunPath -ItemType Directory -Force New-Item -Path $aliyunPath -ItemType Directory -Force
Extract-7Zip -Path $aliyunArchivePath -DestinationPath $aliyunPath Extract-7Zip -Path $packagePath -DestinationPath $aliyunPath
# Add aliyun-cli to path # Add aliyun-cli to path
Add-MachinePathItem $aliyunPath Add-MachinePathItem $aliyunPath
Invoke-PesterTests -TestFile "CLI.Tools" -TestName "Aliyun CLI" Invoke-PesterTests -TestFile "CLI.Tools" -TestName "Aliyun CLI"