diff --git a/scripts/release.yml b/scripts/release.yml index faabac966..14ac6d09e 100644 --- a/scripts/release.yml +++ b/scripts/release.yml @@ -159,18 +159,16 @@ stages: $(Build.SourceBranchName) $(Build.SourceVersion) $(Build.SourcesDirectory) + symbols - task: NuGetToolInstaller@0 inputs: versionSpec: 5.x checkLatest: false - task: NugetCommand@2 - displayName: 'NuGet Pack' + displayName: 'NuGet Pack Symbols' inputs: - command: pack - packagesToPack: $(Agent.TempDirectory)\package\out\Microsoft.Z3.x64.nuspec - basePath: $(Agent.TempDirectory)\package\out - packDestination: $(Build.ArtifactStagingDirectory) - verbosityPack: detailed + command: custom + arguments: 'pack $(Agent.TempDirectory)\package\out\Microsoft.Z3.x64.sym.nuspec -OutputDirectory $(Build.ArtifactStagingDirectory) -Verbosity detailed -Symbols -SymbolPackageFormat snupkg -BasePath $(Agent.TempDirectory)\package\out' - task: EsrpCodeSigning@1 displayName: 'Sign Package' inputs: @@ -198,10 +196,37 @@ stages: SessionTimeout: '60' MaxConcurrency: '50' MaxRetryAttempts: '5' + - task: EsrpCodeSigning@1 + displayName: 'Sign Symbol Package' + inputs: + ConnectedServiceName: 'z3-esrp-signing' + FolderPath: $(Build.ArtifactStagingDirectory) + Pattern: Microsoft.Z3.x64.$(ReleaseVersion).snupkg + signConfigType: 'inlineSignParams' + inlineOperation: | + [ + { + "KeyCode" : "CP-401405", + "OperationCode" : "NuGetSign", + "Parameters" : {}, + "ToolName" : "sign", + "ToolVersion" : "1.0" + }, + { + "KeyCode" : "CP-401405", + "OperationCode" : "NuGetVerify", + "Parameters" : {}, + "ToolName" : "sign", + "ToolVersion" : "1.0" + } + ] + SessionTimeout: '60' + MaxConcurrency: '50' + MaxRetryAttempts: '5' - task: PublishPipelineArtifact@1 inputs: - targetPath: $(Build.ArtifactStagingDirectory)\Microsoft.Z3.x64.$(ReleaseVersion).nupkg - artifactName: 'NuGetPackage' + targetPath: $(Build.ArtifactStagingDirectory) + artifactName: 'NuGet' - job: PythonPackage displayName: "Python packaging"