af115d746b
Instead of setting up the script PATH via nix-shell, use
`nix shell` with inputs from the nix-bitcoin flake.
Advantages:
- Uses the nixpkgs version from the nix-bitcoin flake instead of
`<nixpkgs>` from the user env (NIX_PATH), so the script runtime
env is reproducible.
- The pkg derivations for the runtime env are cached, which greatly
increases script startup speed.
This commit was generated by running the following script inside the
repo root dir:
def transform(path, src)
if src =~ /#! *nix-shell +-i +bash +-p +(.*)/
pkgs = $1
if src =~ /^.*?(set -e.*?pipefail)\n/
set_statement = $1
src.sub!($&, '')
end
src.sub!(/\A.*?#! *nix-shell.*?\n/m, '')
parents = ([ '..' ] * (path.split('/').count - 1)).join('/')
[
'#!/usr/bin/env bash',
*set_statement,
%(. "${BASH_SOURCE[0]%/*}/#{parents}/helper/run-in-nix-env" "#{pkgs}" "$@"),
nil,
src
].join("\n")
end
end
Dir['**/*.sh'].each do |f|
src = File.read(f)
if new_src = transform(f, src)
puts "Changed file #{f}"
File.write(f, new_src)
end
end
25 lines
855 B
Bash
Executable File
25 lines
855 B
Bash
Executable File
#!/usr/bin/env bash
|
|
set -euo pipefail
|
|
. "${BASH_SOURCE[0]%/*}/../../../helper/run-in-nix-env" "git gnupg" "$@"
|
|
|
|
TMPDIR=$(mktemp -d -p /tmp)
|
|
trap 'rm -rf $TMPDIR' EXIT
|
|
cd "$TMPDIR"
|
|
|
|
echo "Fetching latest release"
|
|
git clone https://github.com/simplexum/python-bitcointx 2> /dev/null
|
|
cd python-bitcointx
|
|
latest=python-bitcointx-v1.1.3
|
|
echo "Latest release is ${latest}"
|
|
|
|
# GPG verification
|
|
export GNUPGHOME=$TMPDIR
|
|
echo "Fetching Dimitry Pethukov's Key"
|
|
gpg --keyserver hkps://keyserver.ubuntu.com --recv-keys B17A35BBA187395784E2A6B32301D26BDC15160D 2> /dev/null
|
|
echo "Verifying latest release"
|
|
git verify-commit "$latest"
|
|
|
|
echo "tag: $latest"
|
|
# The prefix option is necessary because GitHub prefixes the archive contents in this format
|
|
echo "sha256: $(git archive --format tar.gz --prefix=python-bitcointx-"$latest"/ "$latest" | sha256sum | cut -d\ -f1)"
|