Skip to content

Update digicert/code-signing-software-trust-action action to v1.1.0#920

Open
renovate[bot] wants to merge 1 commit intomainfrom
renovate/digicert-code-signing-software-trust-action-1.x
Open

Update digicert/code-signing-software-trust-action action to v1.1.0#920
renovate[bot] wants to merge 1 commit intomainfrom
renovate/digicert-code-signing-software-trust-action-1.x

Conversation

@renovate
Copy link
Contributor

@renovate renovate bot commented Feb 13, 2026

This PR contains the following updates:

Package Type Update Change
digicert/code-signing-software-trust-action action minor v1.0.1v1.1.0

Release Notes

digicert/code-signing-software-trust-action (digicert/code-signing-software-trust-action)

v1.1.0: Security hardening, reliability improvements, and test infrastructure

Compare Source

[v1.1.0] – Security hardening, reliability improvements, and test infrastructure

Description
This release strengthens supply chain security, improves the reliability of network and tool installation workflows, and expands the project’s automated test infrastructure. It also includes small GitHub Action interface improvements and macOS installation enhancements.

Upgrade steps
  • No special steps required
  • Update your workflow to reference v1.1.0
  • Use the corrected input name digest-alg
Breaking changes
  • None
New features
  • Enforced HTTPS for the digicert-cdn download source
  • Added SHA-256 checksum verification for downloaded binaries with fail-fast behavior on mismatch
  • Introduced retry with exponential backoff for transient network failures
  • Added new GitHub Action output for the PKCS#11 config file path
  • Expanded test infrastructure to support unit, integration, coverage, and CI runs
Bug fixes
  • Fixed typo in the digest-alg input and deprecated the incorrect parameter
  • Improved macOS DMG handling to ensure volumes are unmounted even when errors occur
  • Improved temporary and cache directory handling for better safety and clarity
Performance improvements
  • Added retry with exponential backoff to reduce failures caused by transient network issues
  • Installed macOS tools in parallel to speed up setup time
  • Improved DMG cleanup to prevent resource leaks
Other changes
  • Added secure temporary directory helper to reduce risk from insecure temporary files (CWE-377)
  • Updated and expanded dev dependencies for Jest and TypeScript testing, including jest, ts-jest, and nock
  • Expanded package.json scripts to support unit, integration, coverage, and CI test workflows
Full changelog
  • Merged PR:

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.


  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot force-pushed the renovate/digicert-code-signing-software-trust-action-1.x branch from 9055634 to 8c6c69b Compare February 16, 2026 15:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants