Expand PowerShell module coverage and bump 0.3.0#9
Merged
Marc-André Moreau (mamoreau-devolutions) merged 14 commits intoMay 22, 2026
Merged
Conversation
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Refactors psign-tool code signing from explicit cert/key paths to a unified CodeSigner abstraction supporting five identity providers: local cert/key files, PFX, portable cert-store, Azure Key Vault, and Azure Artifact Signing. - Introduces CodeSigner/CodeSignerBackend enum with Local, AzureKeyVault, and ArtifactSigning variants - Moves psign-azure-kv-rest and psign-codesigning-rest to cross-platform deps (still feature-gated) - Adds mock Azure Key Vault and Artifact Signing servers for E2E - Adds E2E tests for NuGet signing with all 5 provider types - Updates docs and CLI matrix for cloud provider support Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Adds Azure Key Vault and Artifact Signing E2E signing tests for: - PE/EFI Authenticode signing with both cloud providers - VSIX XMLDSig signing with both cloud providers - App Installer companion PKCS#7 with Azure Key Vault - ClickOnce manifest XMLDSig with Azure Key Vault Also fixes code_without_dry_run_fails_safely assertion to match the updated error message from the multi-provider signer. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Reflects that NuGet, VSIX, App Installer, and ClickOnce signing through psign-tool code now supports all five identity providers (local cert/key, PFX, portable cert-store, Azure Key Vault, and Artifact Signing) rather than only local identities. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
… module - Add NuGet, Vsix, ClickOnceManifest, AppInstaller format variants to psign-portable-core with format-specific sign and inspect functions - Route .nupkg/.snupkg to NuGet CMS, .vsix to OPC XMLDSig, .manifest/.application/.vsto to ClickOnce XMLDSig, .appinstaller to detached PKCS#7 companion (.p7) - Add Azure Key Vault and Artifact Signing fields to PortableSignRequest with mutual-exclusion validation and clear feature-gate diagnostics - Forward cloud provider features through psign-portable-ffi - Add -AzureKeyVault* and -ArtifactSigning* parameters to Set-PortableSignature cmdlet with validation - Update PortableModuleFiles to enumerate .dll, .exe, .nupkg, .snupkg, .vsix, .manifest, .application, .vsto, .appinstaller in directories - Add 4 unit tests for cloud provider validation - Add PowerShell module documentation to migration-dotnet-sign.md Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
- migrate the PowerShell module test entrypoint to Pester - preserve legacy smoke coverage under Pester - add package-native Pester coverage for NuGet, SNuGet, VSIX, ClickOnce manifests, App Installer, and recursive module trees - document the expanded PowerShell module coverage - bump workspace, module, and package versions to 0.3.0 Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Marc-André Moreau (mamoreau-devolutions)
requested a review
from a team
as a code owner
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Marc-André Moreau (mamoreau-devolutions)
merged commit ed958eb
into
master
36 checks passed
Marc-André Moreau (mamoreau-devolutions)
deleted the
mamoreau-devolutions/dotnet-sign-gap-plan
branch
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
0.3.0Details
PowerShell/tests/Invoke-PortableSignatureTests.ps1CI entrypoint, but make it build once and run Pester tests-OutputPath/-Contentvalidation.nupkg/.snupkgsigning and.signature.p7sinspection.vsixsigning and OPC signature-part inspection.manifest,.application, and.vstoClickOnce XMLDSig signing and inspection.appinstallerdetached companion.p7generation and inspectionValidation
pwsh -File .\PowerShell\tests\Invoke-PortableSignatureTests.ps1 -Configuration Releasecargo test -p psign-portable-core -p psign-portable-ffi --lockedcargo fmt --all --checkcargo clippy --workspace --all-targets --locked --quietcargo test --workspace --locked