Skip to content

Commit 030d318

Browse files
JonZeollaclaude
andcommitted
fix: document cosign signature verification in install script
Add docstring note that cli.zenable.app/install.sh performs cosign signature verification and checksum validation of the downloaded binary. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
1 parent b9974e1 commit 030d318

1 file changed

Lines changed: 4 additions & 0 deletions

File tree

hooks/post_gen_project.py

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -187,6 +187,10 @@ def _install_zenable_binary() -> bool:
187187
Runs non-interactively via ZENABLE_YES=1 so no prompts appear during
188188
cookiecutter project generation.
189189
190+
The install script (cli.zenable.app/install.sh) verifies the downloaded
191+
binary via cosign signature verification and checksum validation before
192+
placing it on disk.
193+
190194
Returns True if installation succeeded, False otherwise.
191195
"""
192196
env = {**os.environ, "ZENABLE_YES": "1"}

0 commit comments

Comments
 (0)