Skip to content

Commit d9d302c

Browse files
RoyalOughtnessRoyalOughtness
authored
fix: pin trivalent to 144.0.7559.132 temporarily (#1931)
1 parent 98312df commit d9d302c

File tree

1 file changed

+29
-13
lines changed

1 file changed

+29
-13
lines changed

files/scripts/install-trivalent.sh

Lines changed: 29 additions & 13 deletions
Original file line numberDiff line numberDiff line change
@@ -14,24 +14,40 @@ curl -fLsS --retry 5 -o /etc/yum.repos.d/repo.secureblue.dev.secureblue.repo htt
1414
secureblue_gpg_key_path="$(dnf repo info secureblue --json | jq -r '.[0].gpg_key.[0]')"
1515
rpmkeys --import "${secureblue_gpg_key_path}"
1616

17-
# The package signature is NOT being checked at this stage,
18-
# see https://github.com/rpm-software-management/dnf5/issues/1985
19-
dnf --best --repo=secureblue -y download trivalent
2017

21-
trivalent_rpms_found=0
22-
for trivalent_rpm in trivalent-*."${ARCH}".rpm; do
23-
(( ++trivalent_rpms_found ))
24-
done
2518

26-
if [ "$trivalent_rpms_found" -eq 1 ]; then
27-
echo "Found: ${trivalent_rpms_found}"
19+
# TEMP: Uncomment after trivalent is fixed
20+
# trivalent_rpms_found=0
21+
# for trivalent_rpm in trivalent-*."${ARCH}".rpm; do
22+
# (( ++trivalent_rpms_found ))
23+
# done
24+
25+
# if [ "$trivalent_rpms_found" -eq 1 ]; then
26+
# echo "Found: ${trivalent_rpms_found}"
27+
# else
28+
# echo "Number of trivalent rpms not one, found: ${trivalent_rpms_found}"
29+
# exit 1
30+
# fi
31+
32+
# trivalent_rpm_sans_prefix=${trivalent_rpm#trivalent-}
33+
# trivalent_version=${trivalent_rpm_sans_prefix%".${ARCH}.rpm"}
34+
35+
# TEMP: Revert after trivalent is fixed
36+
if [[ "$ARCH" == 'x86_64' ]]; then
37+
trivalent_version="144.0.7559.132-442539"
38+
39+
# The package signature is NOT being checked at this stage,
40+
# see https://github.com/rpm-software-management/dnf5/issues/1985
41+
dnf --repo=secureblue -y download trivalent-${trivalent_version}.x86_64
2842
else
29-
echo "Number of trivalent rpms not one, found: ${trivalent_rpms_found}"
30-
exit 1
43+
trivalent_version="144.0.7559.132-442541"
44+
45+
# The package signature is NOT being checked at this stage,
46+
# see https://github.com/rpm-software-management/dnf5/issues/1985
47+
dnf --best --repo=secureblue -y download trivalent
3148
fi
3249

33-
trivalent_rpm_sans_prefix=${trivalent_rpm#trivalent-}
34-
trivalent_version=${trivalent_rpm_sans_prefix%".${ARCH}.rpm"}
50+
trivalent_rpm="trivalent-${trivalent_version}.${ARCH}.rpm"
3551

3652
provenance_file="${trivalent_rpm}.intoto.jsonl"
3753
wget "https://github.com/secureblue/Trivalent/releases/download/${trivalent_version}/${provenance_file}"

0 commit comments

Comments
 (0)