From 1adab345112b5fabf184784f78d81e95e6755e5c Mon Sep 17 00:00:00 2001
From: Itms <itms@wildfiregames.com>
Date: Mon, 5 May 2025 21:50:20 +0200
Subject: [PATCH] Generate signatures and hashes in the bundles job

---
 build/jenkins/pipelines/bundles.Jenkinsfile | 13 +++++++++++--
 1 file changed, 11 insertions(+), 2 deletions(-)

diff --git a/build/jenkins/pipelines/bundles.Jenkinsfile b/build/jenkins/pipelines/bundles.Jenkinsfile
index 5dd0f567e0..580a17473b 100644
--- a/build/jenkins/pipelines/bundles.Jenkinsfile
+++ b/build/jenkins/pipelines/bundles.Jenkinsfile
@@ -130,12 +130,21 @@ pipeline {
 				sh "BUNDLE_VERSION=${params.BUNDLE_VERSION} DO_GZIP=${params.DO_GZIP} source/tools/dist/build-unix-win32.sh"
 			}
 		}
+
+		stage("Generate Signatures and Checksums") {
+			steps {
+				withCredentials([sshUserPrivateKey(credentialsId: 'minisign-releases-key', keyFileVariable: 'MINISIGN_KEY', passphraseVariable: 'MINISIGN_PASS')]) {
+					sh 'echo ${MINISIGN_PASS} | minisign -s ${MINISIGN_KEY} -Sm *.{dmg,exe,tar.gz,tar.xz}'
+				}
+				sh 'for file in *.{dmg,exe,tar.gz,tar.xz}; do md5sum "${file}" > "${file}".md5sum; done'
+				sh 'for file in *.{dmg,exe,tar.gz,tar.xz}; do sha1sum "${file}" > "${file}".sha1sum; done'
+			}
+		}
 	}
 
 	post {
 		success {
-			archiveArtifacts '*.dmg,*.exe,*.tar.gz,*.tar.xz'
-			sh "shasum -a 1 *.{dmg,exe,tar.gz,tar.xz}"
+			archiveArtifacts '*.dmg,*.exe,*.tar.gz,*.tar.xz,*.minisig,*.md5sum,*.sha1sum'
 		}
 	}
 }